Bug#479036: CVE-2008-1996: DoS due to too many connections
Package: licq Severity: normal Hi The following CVE(0) has been issued against licq. CVE-2008-1996: licq before 1.3.6 allows remote attackers to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections. A proposed patch can be found here(1). Cheers Steffen (0) http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1996 (1) http://www.licq.org/changeset/6146 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#453278: CVE-2007-6110: XSS in htsearch
Package: htdig Version: 1:3.2.0b6-3.1 Severity: important Tags: security Hi The following CVE[0] has been issued against htdig. CVE-2007-6110: Cross-site scripting (XSS) vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter. Please mention the CVE id number in your changelog, when you fix the problem. Cheers Steffen [0]: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6110 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#383161: please verify again?
Hi Can you please check that again, because according to the build-log[0] everything went fine and I could also build the package in my pbuilder without problems. For now I'll just lower the severity of that bugreport to important, but I don't see a FTBFS so far. Cheers and thanks in advance Steffen [0]: http://buildd.debian.org/fetch.php?&pkg=mined&ver=2000.10-4&arch=s390&stamp=1155468117&file=log&as=raw pgpv4sQFeqVwK.pgp Description: PGP signature
