Bug#384431: 384426 384431 384480 - can be safely closed

[Sergey N. Voronkov]

Hello!

Please, close this bugs - they are resolved after merge of libsasl2 into
STABLE.

Serg.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#384431: sendmail-bin (8.13.4-3sarge2) package bug

[Sergey N. Voronkov]

Package:  sendmail-bin
Version:  8.13.4-3sarge2
Severity: serious

Package depends on:

libsasl2 (>= 2.1.19.dfsg1)

which doesn't exist into STABLE.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#373801: 37381

[Sergey N. Voronkov]

Please, reopen this bug. It isn't fixed in sarge.

Sergey N. Voronkov,
Sibitex Ltd.



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#584183: clamav-0.96 - Two new CVE

[Sergey N. Voronkov]

Package: clamav
Version: 0.96+dfsg-4~volatile1

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1640

Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV
0.96 allows remote attackers to cause a denial of service (crash) via a
crafted PE icon that triggers an out-of-bounds read, related to improper
rounding during scaling. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1639

The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows
remote attackers to cause a denial of service (crash) via a malformed PDF
file, related to an inconsistency in the calculated stream length and the
real stream length. 

FIX:

New version (0.96.1) contain all fixes of the bugs mentioned above.



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org