Bug#610960: CVE-2010-4267: Buffer overflow - target squeeze
+hplip (3.10.6-2) unstable; urgency=high + + * SECURITY UPDATE: denial of service and possible arbitrary code +execution via long SNMP response - Thanks Till +- debian/patches/CVE-2010-4267.dpatch: validate dLen in io/hpmud/pml.c. +- Fixes CVE-2010-4267: Buffer overflow (Closes: #610960) + * Ack NMU - Thanks Evgeni + + -- Mark Purcell m...@debian.org Thu, 27 Jan 2011 00:48:24 +1100 + signature.asc Description: This is a digitally signed message part.
Bug#610960: CVE-2010-4267: Buffer overflow
Package: hplip Severity: grave Tags: security Hi, please see https://bugzilla.redhat.com/show_bug.cgi?id=662740 for the description and a patch by Sebastian Krahmer. A DSA is in preparation, for Squeeze please upload the isolated security fix with urgency=high and ask for an unblock on debian-rele...@lists.debian.org Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#610960: CVE-2010-4267: Buffer overflow
user release.debian@packages.debian.org usertag 610960 + squeeze-can-defer tag 610960 + squeeze-ignore thanks On Mon, 2011-01-24 at 13:32 +0100, Moritz Muehlenhoff wrote: please see https://bugzilla.redhat.com/show_bug.cgi?id=662740 for the description and a patch by Sebastian Krahmer. A DSA is in preparation, for Squeeze please upload the isolated security fix with urgency=high and ask for an unblock on debian-rele...@lists.debian.org This can be fixed after release if necessary; tagging as not a blocker. Regards, Adam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org