FS#20901 - [bzip2] Integer overflow vulnerability (CVE-2010-0405)
Attached to Project:
Arch Linux
Opened by Lukas Fleischer (lfleischer) - Tuesday, 21 September 2010, 12:17 GMT
Last edited by Pierre Schmitz (Pierre) - Tuesday, 21 September 2010, 12:58 GMT
Opened by Lukas Fleischer (lfleischer) - Tuesday, 21 September 2010, 12:17 GMT
Last edited by Pierre Schmitz (Pierre) - Tuesday, 21 September 2010, 12:58 GMT
|
Details
Description:
There's an integer overflow vulnerability in bzip2 1.0.5 (CVE-2010-0405), see [1]. The package has already been flagged out-of-date yesterday but nothing happened yet. [1] http://www.ubuntu.com/usn/usn-986-1 |
This task depends upon
Closed by Pierre Schmitz (Pierre)
Tuesday, 21 September 2010, 12:58 GMT
Reason for closing: Not a bug
Tuesday, 21 September 2010, 12:58 GMT
Reason for closing: Not a bug
Comment by Ionut Biru (wonder) -
Tuesday, 21 September 2010, 12:33 GMT
http://mailman.archlinux.org/pipermail/arch-dev-public/2010-September/017974.html