Bug#405197: libsoup2.2-8: rhythmbox daap plugin crash triggered
remotely
Josselin Mouette
joss at debian.org
Sun Jan 7 14:40:15 CET 2007
Le dimanche 07 janvier 2007 à 14:18 +0100, Loïc Minier a écrit :
> On Sun, Jan 07, 2007, Moritz Muehlenhoff wrote:
> > Joey, please assign a CVE for this. I have an update ready.
>
> FYI, a completely different fix was committed upstream.
Upstream decided to rewrite entirely these functions to be less
error-prone, and added a test suite. Although it was a very good thing
to do, that's probably not something we want to change in a stable
security advisory.
Cheers,
--
.''`.
: :' : We are debian.org. Lower your prices, surrender your code.
`. `' We will add your hardware and software distinctiveness to
`- our own. Resistance is futile.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Ceci est une partie de message
=?ISO-8859-1?Q?num=E9riquement?= =?ISO-8859-1?Q?_sign=E9e?=
Url : http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20070107/ea867715/attachment.pgp
More information about the Pkg-gnome-maintainers
mailing list