Re: klibc 1.5.20 stable/oldstable update
Adam D. Barratt <adam@adam-barratt.org.uk> schrieb:
> On Wed, 2011-05-18 at 15:41 +0000, maximilian attems wrote:
>> 2 commits of klibc 1.5.22 are candidates for stable fixes:
>>
>> * [klibc] ipconfig: comment new escape function
>> security fix for CVE-2011-0997 type vulnerability
>> corresponding cve requested but not yet given out.
>> http://git.kernel.org/?p=libs/klibc/klibc.git;a=commit;h=46a0f831582629612f0ff9707ad1292887f26bff
>
> Thanks for working on fixing this in stable. Have you confirmed with
> the security team that they don't wish to handle this via a DSA as for
> CVE-2011-0997 itself?
The impact is less severe, please proceed with spu/opsu.
Cheers,
Moritz
Reply to: