On Sat, Dec 27, 2014 at 02:27:29PM +0100, Laurent Bigonville wrote:
> On Sat, 20 Dec 2014 08:18:29 +0100 Salvatore Bonaccorso
> <car...@debian.org> wrote:
>
> > Hi,
>
> Hello,
>
> > the following vulnerability was published for libssh.
> >
> > CVE-2014-8132[0]:
> > Possible double free on a dangling pointer with crafted kexinit packet
>
> The fix is available at:
> http://git.libssh.org/projects/libssh.git/commit/?id=c2aed4ca78030d9014a890cb4370e6dc8264823f
Can you please upload a fixed package?
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
