Bug#873718: Fixes for security vulnerabilities on libgig?
Jaromír Mikeš
mira.mikes at gmail.com
Fri Oct 13 20:18:03 UTC 2017
2017-10-03 20:07 GMT+02:00 Christian Schoenebeck <
schoenebeck at linuxsampler.org>:
Hi Christian,
> I just applied your patch regarding CVE-2017-12950, CVE-2017-12952 and
> CVE-2017-12953 for libgig on our side, in slightly modified form:
>
> http://svn.linuxsampler.org/cgi-bin/viewvc.cgi?view=revision&revision=3348
>
> Additionally, the following 2 patches are yet missing on your side, as far
> as
> I can see it.
>
> 1. CVE-2017-12951:
> http://svn.linuxsampler.org/cgi-bin/viewvc.cgi?view=revision&revision=3349
>
> 2. CVE-2017-12954:
> http://svn.linuxsampler.org/cgi-bin/viewvc.cgi?view=revision&revision=3350
>
Sorry for coming so late ... I am just applying your patches and will
update libgig in debian
this evening.
best regards
mira
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20171013/de068bae/attachment.html>
More information about the pkg-multimedia-maintainers
mailing list