Re: [SECURITY] [DSA 2361-1] chasen security update
Dnia 7 grudnia 2011 21:51 Florian Weimer <fw@deneb.enyo.de> napisał(a):
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> - -------------------------------------------------------------------------
> Debian Security Advisory DSA-2361-1 security@debian.org
> http://www.debian.org/security/ Florian Weimer
> December 07, 2011 http://www.debian.org/security/faq
> - -------------------------------------------------------------------------
>
> Package : chasen
> Vulnerability : buffer overflow
> Problem type : remote
> Debian-specific: no
> CVE ID : CVE-2011-4000
>
> It was discovered that ChaSen, a Japanese morphological analysis
> system, contains a buffer overflow, potentially leading to arbitrary
> code execution in programs using the library.
>
> For the oldstable distribution (lenny), this problem has been fixed in
> version 2.4.4-2+lenny2.
>
> For the stable distribution (squeeze), this problem has been fixed in
> version 2.4.4-11+squeeze2.
>
> We recommend that you upgrade your chasen packages.
>
> Further information about Debian Security Advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: http://www.debian.org/security/
>
> Mailing list: debian-security-announce@lists.debian.org
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
>
> iQEcBAEBAgAGBQJO39YNAAoJEL97/wQC1SS+SGAIAIHGcb2CYGdzWlGiuNO1L1x7
> swna8zVEMCHIY79EJEXEs0I/iGTKKcMKz0qeQjYOds4ER+I9g8/jd4YjIy/+acex
> 4sdnOJQN6xjaIlaO9u+qSIFLAmAqsD5ChZQodfTqPRAnBusVRAQsdJ+B3Rnkv9GK
> 8rQcy2sHSj6ThVadI0B90Z1718Ad1Vjj1PsppVNLw0gkDoCBLJyqVwYVitMbSaP8
> ZMZRSbuDU3L1x5zWDuvYgmZlDv1aVA+XHps37wTc7kNt5CiaZh9Tuh1nT/3ce5mN
> RQPlR11T3+aVrr8k/EB2NwayF5qy305L4eRx2/xNE8BIu1h5UheEdEiNqQmKSBM=
> =eBOh
> -----END PGP SIGNATURE-----
>
>
>
Reply to: