Package: nvidia-settings
Version: 319.17-1
Severity: serious
Tags: security
Just saw this in the upstream changelog for 331.67:
- Updated nvidia-settings to use libjansson commit
88aa6a9e30e7465196a737bd0f82eb17f393a120 from the repository at:
git://github.com/akheron/jansson.git
This commit contains the relevant fixes for CVE-2013-6401.
Looks like the nvidia-settings 319 series introduced an embedded
code copy of jansson (whatever that is).
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6401
Andreas
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]