vulnerable to holes fixed by DSA-549-1
Bug #8129 reported by
Debian Bug Importer
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gtk+2.0 (Debian) |
Fix Released
|
Unknown
|
|||
gtk+2.0 (Ubuntu) |
Invalid
|
High
|
Unassigned |
Bug Description
Automatically imported from Debian bug report #272166 http://
Changed in gtk+2.0: | |
status: | Unknown → Fix Released |
To post a comment you must log in.
Le vendredi 17 septembre 2004 à 19:09 -0400, Joey Hess a écrit :
> Package: gtk+2.0
> Severity: grave
>
> For the record: This package is vulnerable to the security holes fixed
> in stable by DSA-549-1. The CAN numbers of these security holes are
> CAN-2004-0782 CAN-2004-0783 CAN-2004-0788.
Is there a problem with the package uploaded today ? If not the bug
should probably be tagged + sarge ...
gtk+2.0 (2.4.9-2) unstable; urgency=high patches/ 002_xpmico. patch: create_ from_xpm.
.
* debian/
- fix CAN-2004-0782 Heap-based overflow in pixbuf_
- fix CAN-2004-0783 Stack-based overflow in xpm_extract_color.
- fix CAN-2004-0788 ico loader integer overflow.
Thanks,
Sebastien Bacher