Package: licq
Severity: normal
Hi
The following CVE(0) has been issued against licq.
CVE-2008-1996:
licq before 1.3.6 allows remote attackers to cause a denial of service
(file-descriptor exhaustion and application crash) via a large number of
connections.
A proposed patch can be found
On Wed, Apr 30, 2008 at 03:16:32PM -0700, Tzvetan Mikov wrote:
If Scheme48 1.3 is badly needed by someone, the existing 1.3 package still
exists and I suppose can always easily be forward ported.
I really hope that Schdme48 does not become orphaned in Debian (or has it
already?).
licq_1.3.5-6_i386.changes uploaded successfully to localhost
along with the files:
licq_1.3.5-6.dsc
licq_1.3.5-6.diff.gz
licq-dev_1.3.5-6_all.deb
licq_1.3.5-6_i386.deb
licq-plugin-autoreply_1.3.5-6_i386.deb
licq-plugin-console_1.3.5-6_i386.deb
licq-plugin-forwarder_1.3.5-6_i386.deb
On Sat, May 03, 2008 at 05:54:18AM +1000, Steffen Joeris wrote:
Package: licq
Severity: normal
The following CVE(0) has been issued against licq.
CVE-2008-1996:
licq before 1.3.6 allows remote attackers to cause a denial of service
(file-descriptor exhaustion and application crash) via
There are disparities between your recently accepted upload and the
override file for the following file(s):
licq-dev_1.3.5-6_all.deb: package says section is libdevel, override says devel.
Either the package or the override file is incorrect. If you think
the override is correct and the
Accepted:
licq-dev_1.3.5-6_all.deb
to pool/main/l/licq/licq-dev_1.3.5-6_all.deb
licq-plugin-autoreply_1.3.5-6_i386.deb
to pool/main/l/licq/licq-plugin-autoreply_1.3.5-6_i386.deb
licq-plugin-console_1.3.5-6_i386.deb
to pool/main/l/licq/licq-plugin-console_1.3.5-6_i386.deb
Your message dated Fri, 02 May 2008 14:32:55 +
with message-id [EMAIL PROTECTED]
and subject line Bug#479036: fixed in licq 1.3.5-6
has caused the Debian Bug report #479036,
regarding CVE-2008-1996: DoS due to too many connections
to be marked as done.
This means that you claim that the
Processing commands for [EMAIL PROTECTED]:
# Automatically generated email from bts, devscripts version 2.10.26
tags 479036 security
Bug#479036: CVE-2008-1996: DoS due to too many connections
There were no tags set.
Tags added: security
End of message, stopping processing here.
Please
We believe that the bug you reported is now fixed; the following
package(s) have been removed from unstable:
4digits | 0.8-1 | alpha, hurd-i386, m68k
4digits | 0.8-2 | source, amd64, arm, armel, hppa, i386, ia64, mips,
mipsel, powerpc, s390, sparc
Note that the package(s) have
We believe that the bug you reported is now fixed; the following
package(s) have been removed from unstable:
libsylpheed-claws-dev | 1.0.5-6.1 | alpha, amd64, arm, armel, hppa, i386,
ia64, m68k, mips, mipsel, powerpc, s390, sparc
sylpheed-claws | 1.0.5-6.1 | source, alpha, amd64, arm, armel,
FYI: The status of the gcal source package
in Debian's testing distribution has changed.
Previous version: 3.01.1-5.1
Current version: 3.01.1-6
--
This email is automatically generated; [EMAIL PROTECTED] is responsible.
See http://people.debian.org/~henning/trille/ for more information.
FYI: The status of the bdfresize source package
in Debian's testing distribution has changed.
Previous version: 1.5-3.2
Current version: 1.5-4
--
This email is automatically generated; [EMAIL PROTECTED] is responsible.
See http://people.debian.org/~henning/trille/ for more information.
On Thu, May 01, 2008 at 04:46:00PM -0400, Roberto C. Sánchez wrote:
On Thu, May 01, 2008 at 05:58:40PM +0100, Enrico Zini wrote:
On Thu, May 01, 2008 at 05:25:16PM +0200, Thijs Kinkhorst wrote:
Doesn't dak already send you an email when it processes an upload with
your
key? What
Enrico Zini wrote:
For example, you have several IDs in your key. If I have reason to
believe that you don't receive mail in one of them (for example, I can
notice that a domain has expired, or I can send fake spam to all of them
and see if one bounces), then I can use that address in
14 matches
Mail list logo