tags 352902 + security woody clone 352902 -1 found 352902 1.0.12-3.woody.9 notfound 352902 1.0.18-1 reassign -1 libpng3 1.2.1-1.1.woody.9 notfound -1 1.2.8rel-1 thanks
Le mercredi 15 février 2006 à 12:56 +1100, Geoff Crompton a écrit : > Package: libpng > Severity: grave > Justification: user security hole > > As seen on http://www.securityfocus.com/bid/16626, there is a buffer overflow. > > Redhat have a patch available at: > https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=179455 > > However security focus lists versions 1.0.16, 1.0.17, 1.2.6, and 1.2.7 as > vulnerable, but I see we've got higher versions in sarge. > But I'm unsure if 1.2.8rel-1 is a pre-release version of 1.2.8, and hence > whether it will have this fix or not. Only the woody versions are affected. I guess the security team is already preparing an update. Regards, -- .''`. Josselin Mouette /\./\ : :' : [EMAIL PROTECTED] `. `' [EMAIL PROTECTED] `- Debian GNU/Linux -- The power of freedom