Hello,
On 22-03-12 15:38, Jonathan Wiltshire wrote:
This is CVE-2012-1187 [1]
Please investigate and if necessary backport the upstream fix [2] for this
problem to bitlbee in Squeeze for the next point release. If you need
assistance at any stage, do not hesitate to ask me.
Ah, hm. I've verified that a default install still has "Groups: 0" in
/proc/../status, so indeed the package needs to be updated.
How much time do I have?
Thanks,
--
+-------- .''`. - -- ---+ + - -- --- ---- ----- ------+
| wilmer : :' : gaast.net | | OSS Programmer www.bitlbee.org |
| lintux `. `~' debian.org | | Full-time geek wilmer.gaast.net |
+--- -- - ` ---------------+ +------ ----- ---- --- -- - +
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
