[Pkg-shadow-devel] Bug#832170: shadow: CVE-2016-6252: Incorrect integer handling
Salvatore Bonaccorso
carnil at debian.org
Tue Dec 27 15:29:49 UTC 2016
Control: tags -1 + pending
On Sat, Jul 23, 2016 at 10:46:42AM +0200, Salvatore Bonaccorso wrote:
> CVE-2016-6252[0]:
> incorrect integer handling
>
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
The fix for the incorrect integer handling seem to be included in
shadow 4.3.1 upstream, and in the packaginging since
https://anonscm.debian.org/git/pkg-shadow/shadow.git/commit/?id=68cd195044deb448c865d267499e1e4fd9322057
Could you please include the bug closer and CVE id once the new
version get uploaded for unstable?
Thanks in advance and regards,
Salvatore
More information about the Pkg-shadow-devel
mailing list