* SECURITY UPDATE: Fix buffer overflows (LP: #377054)
- debian/patches/CVE-2007-2807.patch: Former patch was not fully applied.
This patch now fully applies the previous fix for a stack based
buffer-iverflow and also fixes a potential buffer-overflow in case
strlen(ctcpbuf) returns 0.
- CVE-2007-2807
- CVE-2009-1789
-- Brian Thomason <email address hidden> Wed, 30 Jun 2010 14:29:24 -0400
This bug was fixed in the package eggdrop - 1.6.18-1.1ubuntu1.1
--------------- 1.1ubuntu1. 1) hardy-security; urgency=low
eggdrop (1.6.18-
* SECURITY UPDATE: Fix buffer overflows (LP: #377054) patches/ CVE-2007- 2807.patch: Former patch was not fully applied.
- debian/
This patch now fully applies the previous fix for a stack based
buffer-iverflow and also fixes a potential buffer-overflow in case
strlen(ctcpbuf) returns 0.
- CVE-2007-2807
- CVE-2009-1789
-- Brian Thomason <email address hidden> Wed, 30 Jun 2010 14:29:24 -0400