Your message dated Sun, 29 Oct 2006 23:10:31 +0100
with message-id <[EMAIL PROTECTED]>
and subject line Closing with proper version header
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: screen
Severity: grave
Tags: security
From http://secunia.com/advisories/22583/:
"Some vulnerabilities have been reported in GNU Screen, which can be
exploited by malicious people to cause a DoS (Denial of Service) or
potentially compromise a vulnerable system.
The vulnerabilities are caused due to errors within the handling of
certain UTF-8 characters. This can be exploited to crash GNU Screen
or potentially execute arbitrary code by printing a specially crafted
string to the window."
This is fixed in 4.0.3
Please mention the CVE id in the changelog.
--- End Message ---
--- Begin Message ---
Version: 4.0.3-0.1
# Closing versioned, so that it's properly tracked for testing
--- End Message ---
