[pkg-firebird-general] Bug#446373: #446373: firebird1.5: CVE-2007-4992 stack based buffer overflow

Nico Golde nion at debian.org
Sat Oct 13 11:11:17 UTC 2007


Hi Damyan,
* Damyan Ivanov <dmn at debian.org> [2007-10-12 21:20]:
> block 446373 438862
> thanks
> 
> firebird1.5 is pending removal from the archive (#438862, #438855).

Ok thanks for this information.

> Currently the only obstacle in the way is that php5 still build-depends
> on firebird1.5-dev. (#433736)
> 
> I am preparing an NMU for the later, as it is pending for two weeks now
> and the patch is in BTS anyway.

Ok. I just reported two other CVEs with patches, please also include 
them.

> firebird1.5 must go away ASAP, if nothing else, to stop wasting security
> team time :)

Hehe yes :)
Kind regards
Nico
-- 
Nico Golde - http://ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.





More information about the pkg-firebird-general mailing list