Re: Bug#496851: yelp: does not correctly handle format strings for certain error messages

On Thursday 28 August 2008 03:51, Michael Gilbert wrote: > >> what about a getting a fix for this issue into stable? > > > >  it doesn't affect stable > > ok, can someone update the tracker [1] to reflect that this issue does > not effect etch (yelp 2.14) and sarge (yelp 2.6)? I've updated the etc

Re: Bug#496851: yelp: does not correctly handle format strings for certain error messages

>> what about a getting a fix for this issue into stable? > > it doesn't affect stable ok, can someone update the tracker [1] to reflect that this issue does not effect etch (yelp 2.14) and sarge (yelp 2.6)? [1] http://security-tracker.debian.net/tracker/CVE-2008-3533 -- To UNSUBSCRIBE, email

Re: Bug#496851: yelp: does not correctly handle format strings for certain error messages

On Wed, Aug 27, 2008, Michael Gilbert wrote: > what about a getting a fix for this issue into stable? it doesn't affect stable -- Loïc Minier -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Bug#496851: yelp: does not correctly handle format strings for certain error messages

notfound 496851 2.22-1-6 thank you what about a getting a fix for this issue into stable? > yelp (2.22.1-4) unstable; urgency=high > > * SECURITY: New patch, 60_format-string, fixes format string vulnerability; >bump urgency to high; CVE-2008-3533; GNOME #546364; from SVN r3173; >LP: #25

Password leaks are security holes

severity 311772 critical tag 311772 + security thanks When users' clear text passwords are logged, that's a security hole. Setting severity to critical since this bug "introduces a security hole on systems where you install the package". Quote is from the definition of the critical severity at h

Re: http://lists.debian.org/debian-security/2003/08/msg00156.html

Adrian Chapela skrev: Stephen Vaughan escribió: Why? Mailing lists always archive posts, there is no reason to delete it On Wed, Aug 27, 2008 at 1:54 PM, Sanjukta Guhathakurta <[EMAIL PROTECTED] > wrote: Hi there, I have written in the forum long back.

Re: [DSA 1605-1] DNS vulnerability impact on the libc stub resolver

On Mon, 11 Aug 2008 19:25:17 +0200 Moritz Muehlenhoff <[EMAIL PROTECTED]> wrote: > The Linux kernel implements UDP source port randomisation since 2.6.24: > > | This patch causes UDP port allocation to be randomized like TCP. > | The earlier code would always choose same port (ie first empty list)

Re: http://lists.debian.org/debian-security/2003/08/msg00156.html

Stephen Vaughan escribió: Why? Mailing lists always archive posts, there is no reason to delete it On Wed, Aug 27, 2008 at 1:54 PM, Sanjukta Guhathakurta <[EMAIL PROTECTED] > wrote: Hi there, I have written in the forum long back. But the msg is still

Re: http://lists.debian.org/debian-security/2003/08/msg00156.html

Why? Mailing lists always archive posts, there is no reason to delete it On Wed, Aug 27, 2008 at 1:54 PM, Sanjukta Guhathakurta < [EMAIL PROTECTED]> wrote: > Hi there, > > I have written in the forum long back. But the msg is still searchable. Can > you please remove my msg about blocking email i