Re: bzip2 update please

Yaakov (Cygwin/X) Tue, 11 Jan 2011 17:17:14 -0800

On Tue, 2011-01-11 at 12:43 +0100, Reini Urban wrote:
> Dear bzip2 maintainer (Charles),
> 1.0.6 is required against the CVE-2010-0405 decompression attack.
> 
> Did Yaakov overlook this? Normally he's the one bugging first.
> clamav had a configure check for this.


I did miss this one, but I'll admit that my "bugging" seems to be of
very little help.


Yaakov



--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

Re: bzip2 update please

Reply via email to