Remote crashes being fixed in 2.6.2

Mark Doliner mark at kingant.net
Tue Sep 8 12:21:58 EDT 2009


On Tue, Sep 8, 2009 at 7:46 AM, Jan Lieskovsky<jlieskov at redhat.com> wrote:
> Hi,
>
> Ari Pollak wrote:
>>
>> Paul Aurich wrote:
>>>
>>> Per Warren's request, this is a list of remote crashes being fixed in
>>> 2.6.2. The XMPP crash, at the least, probably impacts everything back to
>>> and including 2.5.2 (when that support was added). I don't know about
>>> the others.
>>
>> The inevitable question: do these have CVEs?
>
> The CVEs were requested here:
>
>    http://www.openwall.com/lists/oss-security/2009/09/08/3
>
> so hopefully they will arrive shortly.

Ok, thanks.

> For the [1] record:
>
>       Yahoo IM parsing crash           22 August 2009          2.6.1
>
>
> this was assigned CVE-2009-3025 [2], so you can
> update relevant record.

Updated!

Thanks,
Mark



More information about the Packagers mailing list