Package: bitlbee Version: --src Severity: important Tags: upstream security patch
Hi The fix applied for upstream bug https://bugs.bitlbee.org/ticket/1282 was incomplete and resulted in the followup: https://github.com/bitlbee/bitlbee/commit/30d598ce7cd3f136ee9d7097f39fa9818a272441 Details in: http://www.openwall.com/lists/oss-security/2017/01/30/4 (which will probably result in three CVEs for bitlbee, I will update the security tracker once assigned). Regards, Salvatore
