[Secure-testing-team] Bug#693026: weechat: Buffer overflow
Moritz Muehlenhoff
jmm at inutil.org
Mon Nov 12 07:53:27 UTC 2012
Package: weechat
Severity: grave
Tags: security
Justification: user security hole
Please see https://savannah.nongnu.org/bugs/?37704
A CVE ID has been requested, but not yet assigned:
http://www.openwall.com/lists/oss-security/2012/11/10/4
Fix:
http://git.savannah.gnu.org/gitweb/?p=weechat.git;a=commitdiff;h=9453e81baa7935db82a0b765a47cba772aba730d
Since the version in sid is more recent than in Wheezy, you'll need to fix this
through testing-proposed-updates:
http://www.debian.org/doc/manuals/developers-reference/pkgs.html#t-p-u
Cheers,
Moritz
More information about the Secure-testing-team
mailing list