[Secure-testing-team] Bug#481186: CVE-2008-2149: buffer overflows
Thijs Kinkhorst
thijs at debian.org
Fri May 16 12:09:36 UTC 2008
On Fri, May 16, 2008 13:59, Andreas Tille wrote:
> I've got no answer to this question for nearly 24 hours. Because I
> consider it more important to fix a known issue _now_ instead of doing a
> long research for other issues for perhaps weeks I will upload packages
> with the proposed fix in the next hour. Other issues might be solved in
> later uploads.
>
> Please tell me what I should do to support the security team. It's just
> my first security relevant bug.
If you have a fix for unstable please upload it with urgency=medium or
high and mention of the CVE id in the changelog. If you suspect that the
fix may be incomplete then mention that in the changelog aswell.
For stable we'd rather wait a bit to see if there are indeed more issues
there.
cheers,
Thijs
More information about the Secure-testing-team
mailing list