[Pkg-hpijs-devel] Bug#610960: CVE-2010-4267: Buffer overflow - target squeeze
Mark Purcell
mark at purcell.id.au
Wed Jan 26 13:54:15 UTC 2011
+hplip (3.10.6-2) unstable; urgency=high
+
+ * SECURITY UPDATE: denial of service and possible arbitrary code
+ execution via long SNMP response - Thanks Till
+ - debian/patches/CVE-2010-4267.dpatch: validate dLen in io/hpmud/pml.c.
+ - Fixes "CVE-2010-4267: Buffer overflow" (Closes: #610960)
+ * Ack NMU - Thanks Evgeni
+
+ -- Mark Purcell <msp at debian.org> Thu, 27 Jan 2011 00:48:24 +1100
+
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-hpijs-devel/attachments/20110127/0ab283e9/attachment.pgp>
More information about the Pkg-hpijs-devel
mailing list