[Technik] [SECURITY] [DSA 1219-1] New texinfo packages fix
multiple vulnerabilities
Noèl Köthe
noel at debian.org
Sat Dec 2 10:24:26 CET 2006
Am Montag, den 27.11.2006, 18:42 +0100 schrieb Noah Meyerhans:
> Debian Security Advisory DSA-1219-1 security at debian.org
> http://www.debian.org/security/ Noah Meyerhans
> November 27, 2006
>
> Package : texinfo
> Vulnerability : buffer overflow
> Problem type : local
> Debian-specific: no
> CVE Id(s) : CVE-2005-3011 CVE-2006-4810
> BugTraq ID : 14854 20959
texinfo auf pima, pomo, yuma, cusa, cree, wasco, cupa, kiowa, karuk,
kansa, acoma, h01, h02, h03 und h04 aktualisiert.
> For the stable distribution (sarge), these problems have been fixed in
> version 4.7-2.2sarge2 Note that binary packages for the mipsel
> architecture are not currently available due to technical problems with
> the build host. These packages will be made available as soon as
> possible.
changelog:
texinfo (4.7-2.2sarge2) stable-security; urgency=high
* Non-maintainer upload by the Security team.
* Incorporate Ubuntu's patch for CAN-2005-3011 (insecure temporary file
handling.)
-- Noah Meyerhans <noahm at debian.org> Tue, 21 Nov 2006 15:20:22 -0500
--
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : /archiv/technik/attachments/20061202/875640e2/attachment.pgp
More information about the Technik
mailing list