FS#38886 : [libgadu] security update for multiple CVE

FS#38886 - [libgadu] security update for multiple CVE

Attached to Project: Arch Linux
Opened by RbN (RbN) - Thursday, 13 February 2014, 09:14 GMT
Last edited by Andrea Scarpino (BaSh) - Thursday, 13 February 2014, 10:02 GMT

Task Type	Bug Report
Category	Packages: Extra
Status	Closed
Assigned To	Andrea Scarpino (BaSh)
Architecture	All
Severity	High
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Description:
CVE-2013-4488 [0] : missing sll cert validatio
CVE-2013-6487 [1] : Buffer overflow in Gadu-Gadu HTTP parsing

Resolution:
corrective update : 1.11.3 [2]

Ressources:
[0] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4488
[1] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-6487
[2] http://github.com/wojtekka/libgadu/releases/download/1.11.3/libgadu-1.11.3.tar.gz

This task depends upon

Closed by Andrea Scarpino (BaSh)
Thursday, 13 February 2014, 10:02 GMT
Reason for closing: Fixed
Additional comments about closing: libgadu 1.11.3-1

Comment by Andrea Scarpino (BaSh) - Thursday, 13 February 2014, 10:02 GMT

Next time just flag it as out-of-date.

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#38886 - [libgadu] security update for multiple CVE

Details

Loading...