[Secure-testing-team] Bug#699649: Boost.Locale library security flaw
Xiyue Deng
manphiz-guest at users.alioth.debian.org
Sat Feb 2 22:41:05 UTC 2013
Package: libboost-locale1.49-dev
Version: 1.49.0-3.1
Severity: grave
Tags: security
Boost has issued a security notice:
http://www.boost.org/users/news/boost_locale_security_notice.html
Boost versions from 1.48.0 to 1.52.0 are affected. A patch is provided:
http://cppcms.com/files/locale/boost_locale_utf.patch
Please incorporate the patch.
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (500, 'testing')
Architecture: mipsel (mips64)
Kernel: Linux 3.2.0-4-loongson-2f
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libboost-locale1.49-dev depends on:
ii libboost-locale1.49.0 1.49.0-3.1
ii libboost1.49-dev 1.49.0-3.1
libboost-locale1.49-dev recommends no packages.
libboost-locale1.49-dev suggests no packages.
-- no debconf information
More information about the Secure-testing-team
mailing list