Re: [SECURITY] [DSA 1020-1] New flex packages fix insecure code generation

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1020-1] New flex packages fix insecure code generation
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Tue, 28 Mar 2006 09:11:09 +0200
Message-id: <[🔎] slrne2hocd.6ba.jmm@inutil.org>
References: <20060327231956.GA6608@galadriel.inutil.org> <[🔎] 5EAAEBE4763FE549CBA4D192@d216-220-25-20.dynip.modwest.com>

Michael Loftis wrote:
> Ouch....is anyone anywhere beginning to do an audit of other packages to 
> find out whats affected by this?

The list of potentially affected packages has been identified, but we haven't
yet checked all packages for genuine exploitability. If anyone wants to help
drop me a line and I'll send you the list.

Cheers,
        Moritz

Reply to:

References:
- Re: [SECURITY] [DSA 1020-1] New flex packages fix insecure code generation
  - From: Michael Loftis <mloftis@modwest.com>

Prev by Date: Re: bug in tar 1.14-2.1
Next by Date: Michael Widmaier ist außer Haus.
Previous by thread: Re: [SECURITY] [DSA 1020-1] New flex packages fix insecure code generation
Next by thread: Michael Widmaier ist außer Haus.
Index(es):
- Date
- Thread