[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#286984: marked as done (tetex-bin: Vulnerable to CAN-2004-1125)

reopen 286984
tags 286984 sarge
stop

>    * SECURITY UPDATE:
>      - Added debian/patches/patch-CAN-2004-1125 to fix a buffer overflow in
>        PDF reading code that was taken from xpdf (closes: #286984). Thanks to
>        Martin Pitt <martin.pitt@canonical.com>, see
>        http://www.idefense.com/application/poi/display?id=172 [frank]
>      - Fixed insecure tempfile creation, thanks to Javier
>        Fernández-Sanguino Peña <jfs@computer.org> (closes: #286370) [frank]

I'm going to keep this open until this upload has entered sarge, just as
Adrian has suggested (and did) with CAN-2004-0888

Regards, Frank
-- 
Frank Küster
Inst. f. Biochemie der Univ. Zürich
Debian Developer
Reply to: