subject:"\[OE\-core\] \[PATCH\] dpkg\: upgrade to 1.17.25"

Re: [OE-core] [PATCH] dpkg: upgrade to 1.17.25

2015-05-04 Thread Aníbal Limón

Hi, On 29/04/15 03:09, rongqing...@windriver.com wrote: From: Roy Li upgrade to fix two CVE defects: CVE-2014-8625 and CVE-2015-0840 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8625 Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg be

[OE-core] [PATCH] dpkg: upgrade to 1.17.25

2015-04-29 Thread rongqing.li

From: Roy Li upgrade to fix two CVE defects: CVE-2014-8625 and CVE-2015-0840 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8625 Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of ser