Re: klibc 1.5.20 stable/oldstable update

To: debian-release@lists.debian.org
Subject: Re: klibc 1.5.20 stable/oldstable update
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Wed, 18 May 2011 23:01:50 +0200
Message-id: <[🔎] slrnit8ctu.374.jmm@inutil.org>
References: <[🔎] 20110518154150.GN17786@vostochny.stro.at> <[🔎] 1305750327.3964.779.camel@hathi.jungle.funky-badger.org>

Adam D. Barratt <adam@adam-barratt.org.uk> schrieb:
> On Wed, 2011-05-18 at 15:41 +0000, maximilian attems wrote:
>> 2 commits of klibc 1.5.22 are candidates for stable fixes:
>> 
>> * [klibc] ipconfig: comment new escape function
>>   security fix for CVE-2011-0997 type vulnerability
>>   corresponding cve requested but not yet given out.
>> http://git.kernel.org/?p=libs/klibc/klibc.git;a=commit;h=46a0f831582629612f0ff9707ad1292887f26bff
>
> Thanks for working on fixing this in stable.  Have you confirmed with
> the security team that they don't wish to handle this via a DSA as for
> CVE-2011-0997 itself?

The impact is less severe, please proceed with spu/opsu.

Cheers,
        Moritz

Reply to:

References:
- klibc 1.5.20 stable/oldstable update
  - From: maximilian attems <max@stro.at>
- Re: klibc 1.5.20 stable/oldstable update
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Bug#627124: marked as done (nmu: vlc_1.1.9-1)
Next by Date: Re: klibc 1.5.20 stable/oldstable update
Previous by thread: Re: klibc 1.5.20 stable/oldstable update
Next by thread: Re: klibc 1.5.20 stable/oldstable update
Index(es):
- Date
- Thread