[Secure-testing-team] Re: [Secure-testing-commits] r5273 - data/CVE
Florian Weimer
fw at deneb.enyo.de
Tue Jan 16 20:14:01 CET 2007
* Alex de Oliveira Silva:
> CVE-2007-XXXX [libgtop2 "glibtop_get_proc_map_s()" Buffer Overflow]
> - - libgtop2 2.14.4-3 <not-affected>
> [etch] - libgtop2 2.14.4-2 (medium)
> [sarge] - libgtop 2.6.0-4 (medium)
> NOTE: sarge - libgtop2 2.6.0-4 sent patch to secure team.
Why is unstable not affected? According to the changelog, 2.14.4-2
only contains this change:
libgtop2 (2.14.4-2) unstable; urgency=low
.
* New patch, 10_kfreebsd, to build-depend and depend on libkvm-dev on
kfreebsd, to update the m4 macros to detect __FreeBSD_kernel__, and to
update configure; thanks Petr Salinger; closes: #399270.
This appears to be unrelated.
Furthermore, libgtop has never reached version 2.6.0-4, it seems.
More information about the Secure-testing-team
mailing list