Re: wheezy-backports: libotr5 vulnerable to CVE-2016-2851

To: debian-backports@lists.debian.org
Subject: Re: wheezy-backports: libotr5 vulnerable to CVE-2016-2851
From: intrigeri <intrigeri@debian.org>
Date: Thu, 28 Apr 2016 11:16:38 +0200
Message-id: <[🔎] 85eg9qks95.fsf@boum.org>
In-reply-to: <[🔎] 87eg9swdgw.fsf@purkki.adurom.net> (Kalle Valo's message of "Tue, 26 Apr 2016 19:18:23 +0300")
References: <[🔎] 87eg9swdgw.fsf@purkki.adurom.net>

Hi,

Kalle Valo wrote (26 Apr 2016 16:18:23 GMT) :
> I did a quick check and to me it looks like that libotr5 4.1.0-2~bpo70+1
> in wheezy-backports is vulnerable to CVE-2016-2851 (remote code
> execution)[1]. [...] Is anyone
> able to upload latest libotr5 to fix this?

Uploaded. Thanks for the heads up!

Cheers,
-- 
intrigeri

Reply to:

References:
- wheezy-backports: libotr5 vulnerable to CVE-2016-2851
  - From: Kalle Valo <kvalo@adurom.com>

Prev by Date: Re: Linux kernel 4.4 marked as obsolete in backports
Previous by thread: wheezy-backports: libotr5 vulnerable to CVE-2016-2851
Next by thread: Linux kernel 4.4 marked as obsolete in backports
Index(es):
- Date
- Thread