Bug#294099: multiple security holes in XPM code (CAN-2004-0914)

Martin Pitt wrote: > Hi again, > > Martin Pitt [2005-02-16 11:28 +0100]: > > Hi! > > > > Please note that the new upstream only fixes lesstif2, not lesstif1: > > > > This directory contains fixed sources: > > > > http://cvs.sourceforge.net/viewcvs.py/lesstif/lesstif/lib/Xm-2.1/ > > > > Howev

Bug#294099: multiple security holes in XPM code (CAN-2004-0914)

Hi again, Martin Pitt [2005-02-16 11:28 +0100]: > Hi! > > Please note that the new upstream only fixes lesstif2, not lesstif1: > > This directory contains fixed sources: > > http://cvs.sourceforge.net/viewcvs.py/lesstif/lesstif/lib/Xm-2.1/ > > However, this doesn't: > > http://cvs.sourcef

Bug#294099: multiple security holes in XPM code (CAN-2004-0914)

Hi! Please note that the new upstream only fixes lesstif2, not lesstif1: This directory contains fixed sources: http://cvs.sourceforge.net/viewcvs.py/lesstif/lesstif/lib/Xm-2.1/ However, this doesn't: http://cvs.sourceforge.net/viewcvs.py/lesstif/lesstif/lib/Xm/ However, fixing that is an

Bug#294099: multiple security holes in XPM code (CAN-2004-0914)

Package: lesstif1-1 Severity: grave Tags: security CAN-2004-0914 describes multiple security holes in libxpm: Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) direc