Remote crashes being fixed in 2.6.2
Mark Doliner
mark at kingant.net
Tue Sep 8 12:21:58 EDT 2009
On Tue, Sep 8, 2009 at 7:46 AM, Jan Lieskovsky<jlieskov at redhat.com> wrote:
> Hi,
>
> Ari Pollak wrote:
>>
>> Paul Aurich wrote:
>>>
>>> Per Warren's request, this is a list of remote crashes being fixed in
>>> 2.6.2. The XMPP crash, at the least, probably impacts everything back to
>>> and including 2.5.2 (when that support was added). I don't know about
>>> the others.
>>
>> The inevitable question: do these have CVEs?
>
> The CVEs were requested here:
>
> http://www.openwall.com/lists/oss-security/2009/09/08/3
>
> so hopefully they will arrive shortly.
Ok, thanks.
> For the [1] record:
>
> Yahoo IM parsing crash 22 August 2009 2.6.1
>
>
> this was assigned CVE-2009-3025 [2], so you can
> update relevant record.
Updated!
Thanks,
Mark
More information about the Packagers
mailing list