At Thu, 24 Nov 2011 18:08:24 +0100,
Moritz Muehlenhoff wrote:
>
> > Affected Packages:
> > libchasen2
> > libchasen-dev
> > libtext-chasen-perl
>
> Does that mean that the vulnerable code is also present in
> libtext-chasen-perl?
Ah, it means libtext-chsaen-perl depends libchasen2, and it uses
v
On Thu, Nov 24, 2011 at 11:05:05AM +0900, NOKUBI Takatsugu wrote:
> I wrote a DSA draft, check it please.
>
> BTW, JVN's workaround is not correct. There is also the same problem
> in ChaSen 2.3.3.
>
> --
> DSA--1 chasen -- buffer overflow
>
> Affected Packages:
> libchasen2
> libchasen-dev
2 matches
Mail list logo
