pcp
[Top] [All Lists]

Bug#698735: [pcp] Bug#698735: CVE-2012-5530

To: Salvatore Bonaccorso <carnil@xxxxxxxxxx>, Moritz Muehlenhoff <jmm@xxxxxxxxxx>
Subject: Bug#698735: [pcp] Bug#698735: CVE-2012-5530
From: Nathan Scott <nathans@xxxxxxxxxx>
Date: Wed, 7 Aug 2013 19:36:52 -0400 (EDT)
Cc: 698735@xxxxxxxxxxxxxxx
Delivered-to: pcp@xxxxxxxxxxx
In-reply-to: <20130405050908.GA32697@elende>
References: <2015547664.12675730.1359416443054.JavaMail.root@xxxxxxxxxx> <657662723.22188559.1363736939188.JavaMail.root@xxxxxxxxxx> <20130405050908.GA32697@elende>
Reply-to: Nathan Scott <nathans@xxxxxxxxxx>, 698735@xxxxxxxxxxxxxxx
Resent-cc: PCP Development Team <pcp@xxxxxxxxxxx>
Resent-date: Wed, 07 Aug 2013 23:39:01 +0000
Resent-from: Nathan Scott <nathans@xxxxxxxxxx>
Resent-message-id: <handler.698735.B698735.13759186154278@xxxxxxxxxxxxxxx>
Resent-sender: Debian BTS <debbugs@xxxxxxxxxxxxxxxxxxxx>
Resent-to: debian-bugs-dist@xxxxxxxxxxxxxxxx
Thread-index: pWrvpTbwUmJWzAwzuKbLJaiv0Pk2dQ==
Thread-topic: Bug#698735: CVE-2012-5530
Hi guys,

Coming back to this one after quite some time ... (my apologies!)

----- Original Message -----
> Only an update... In the security-tracker CVE-2012-5530[1] was marked
> as no-dsa. This means there will not be a security announce update via
> stable-security. But could you prepare a fix for it for Squeeze via a
> stable-proposed-updates?

I have finally been able to find resources needed to setup an oldstable
machine to appropriately build and test these changes, and have done so
now.

So, mainly FYI - I'll be following Salvatore's pointer above, and doing
an upload as a proposed update to oldstable to resolve this one (stable
has since become wheezy and it is unaffected).

cheers.

--
Nathan

<Prev in Thread] Current Thread [Next in Thread>
  • Bug#698735: [pcp] Bug#698735: CVE-2012-5530, Nathan Scott <=