[Secure-testing-team] Bug#840889: CVE-2016-4491 and CVE-2016-6131 not fixed in libiberty_20161011-1
Anton Gladky
gladk at debian.org
Sat Oct 15 19:08:55 UTC 2016
Source: libiberty
Version: 20161011-1
Severity: important
Tags: security patch
Dear maintainer,
as noted here [1], two CVEs CVE-2016-4491 CVE-2016-6131 were
not were not fixed by a previous upload, because upstream
did not include the corresponding patches.
I have prepared a patch, which will be attached in the next mail.
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840360#19
Thanks,
Anton
More information about the Secure-testing-team
mailing list