Control: tag -1 + confirmed
Control: found -1 4.6.2-3
Control: found -1 4.5.0-6
Control: found -1 4.2.1-3+deb8u1
Hi Salvatore,
Salvatore Bonaccorso wrote:
> The following vulnerability was published for screen,
Thanks for the heads up! Hadn't notice that upstream bug report
yesterday, but I do h
Hi Axel,
On Wed, Feb 10, 2021 at 5:17 PM Axel Beckert wrote:
> Thanks for the heads up! Hadn't notice that upstream bug report
> yesterday, but I do have it in my inbox.
>
> https://savannah.gnu.org/bugs/?60030 got locked down in the meanwhile
> as it seems.
>
> Can you keep me in the loop wrt. t
On Wed, Feb 10, 2021 at 6:56 PM Utkarsh Gupta wrote:
> I'll take care of fixing stretch and jessie and I am aware of all this
> since I was the one who got this CVE assigned! :D
Oh, I forgot to mention, I say this with my LTS and ELTS hat on!^
But in case if you want to work on the package yourse
Hello,
On Wed, Feb 10, 2021 at 6:56 PM Utkarsh Gupta wrote:
> I'll take care of fixing stretch and jessie and I am aware of all this
> since I was the one who got this CVE assigned! :D
Somewhat related, I also got CVE-2021-27135 assigned for xterm.
I'll take care of the updates when the patch is
Hi,
Utkarsh Gupta wrote:
> On Wed, Feb 10, 2021 at 6:56 PM Utkarsh Gupta wrote:
> > I'll take care of fixing stretch and jessie and I am aware of all this
> > since I was the one who got this CVE assigned! :D
>
> Somewhat related, I also got CVE-2021-27135 assigned for xterm.
> I'll take care of
On Wed, Feb 10, 2021 at 05:51:50PM +0100, Axel Beckert wrote:
>
> It though doesn't crash an unpatched screen.
>
Hey Axel, I tried to reply to your screen-devel post, but it's taking a
while to subscribe!
Here is the message I sent:
On 2021-02-10, Axel Beckert wrote:
> + else if (i < sizeof c
Hi Tavis,
thanks for having a look into this!
Tavis Ormandy wrote:
> On 2021-02-10, Axel Beckert wrote:
> > + else if (i < sizeof combchars / sizeof *combchars) {
>
> This doesn't seem right, I think it should be compared against the
> calloc param at the top of utf8_handle_comb(),
Good point,
