[Pkg-libvirt-maintainers] Bug#623222: Bug#623222: CVE-2011-1486: Error handling not thread-safe
Guido Günther
agx at sigxcpu.org
Sun Apr 24 08:13:12 UTC 2011
notfound 623222 libvirt/0.9.0-1
thanks
Hi Moritz,
On Mon, Apr 18, 2011 at 03:45:06PM +0200, Moritz Muehlenhoff wrote:
> Package: libvirt
> Severity: important
> Tags: security
>
> Hi,
> please see https://bugzilla.redhat.com/show_bug.cgi?id=693391
> and https://www.redhat.com/archives/libvir-list/2011-March/msg01087.html
>
> This doesn't seem grave enough to warrant a DSA, it could either
> be fixed through s-p-u or coupled with a possible future DSA
> for libvirt.
Just for the record: upstream's fix is in 0.9.0 already. BTW Does tagging
the bugs as found/notfound update the affected versions at
https://bugzilla.redhat.com/show_bug.cgi?id=693391
automatically?
Cheers,
-- Guido
>
> Cheers,
> Moritz
>
> -- System Information:
> Debian Release: 5.0.1
> Architecture: amd64 (x86_64)
> Shell: /bin/sh linked to /bin/bash
> Kernel: Linux 2.6.32-ucs37-amd64
> Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
>
>
>
> _______________________________________________
> Pkg-libvirt-maintainers mailing list
> Pkg-libvirt-maintainers at lists.alioth.debian.org
> http://lists.alioth.debian.org/mailman/listinfo/pkg-libvirt-maintainers
>
More information about the Pkg-libvirt-maintainers
mailing list