On Fri, 2004-11-19 at 04:56 -0500, X Strike Force SVN Repository Admin wrote: > + * Security upload: further fixes to the libXpm issues reported in > + CAN-2004-0687 and CAN-2004-0688, and fixed in 4.3.0.dfsg.1-6ubuntu18. > + Similar integer overflow vulnerabilities have discovered and fixed. The > + CAN numbers remain the same, as it is the same vulnerabilities that are > + being fixed.
Actually, there's a new CAN assigned for this, and it's CAN-2004-0914, IIRC. Sorry about this, but it only got assigned a CAN *after* I uploaded this package to warty.
