Hi! * Michael Gilbert <michael.s.gilb...@gmail.com> [091207 06:08]:
> The following CVE (Common Vulnerabilities & Exposures) id was > published for libtool. I have determined that this package embeds a > vulnerable copy of the libtool source code. Could it be, that the package wml is not affected? While the source package indeed contains the named sources (but I found no version in it), the only shared object I found in the binary package is /usr/lib/wml/perl/lib/i486-linux-gnu-thread-multi/auto/WML/GD/GD.so. And ldd doesn't list it: ldd /usr/lib/wml/perl/lib/i486-linux-gnu-thread-multi/auto/WML/GD/GD.so linux-gate.so.1 => (0xb7fee000) libm.so.6 => /lib/i686/cmov/libm.so.6 (0xb7fb1000) libc.so.6 => /lib/i686/cmov/libc.so.6 (0xb7e6a000) /lib/ld-linux.so.2 (0xb7fef000) Best Regards, Alexander -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org