-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Am 10.10.2010 13:19, Moritz Muehlenhoff wrote: > Package: znc > Severity: grave > Tags: security > > CVE-2010-2812 and CVE-2010-2934 are currently only > fixed in experimental, but not sid and Squeeze. The > Red Hat bug contains references to the patches: > https://bugzilla.redhat.com/show_bug.cgi?id=622600 > > Cheers, > Moritz
- From a quick look at the source package, the included patch "01-out-of-range-error.diff" seems to fix exactly this.[1] According to the patch description this would be a dupe of bug #592064. Cheers, Uli [1] http://patch-tracker.debian.org/patch/series/view/znc/0.092-3/01-out-of-range-error.diff - -- - - Buck, when, exactly, did you lose your mind? - - Three months ago. I woke up one morning married to a pineapple. An ugly pineapple... But I loved her -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBCAAGBQJMsae+AAoJECLkKOvLj8sGqWwH/A49dSZCnA9VNlSUap/9QVq6 ADSSicKT6qc6mmZHW2rixzI5FLLIscaLOA6BqtE+S8jyyiLsJD1nfeO45sbxoRTX N0AeB6pJgL5kS65VgttGbynwU67pUYy27O5ipoHYeMUNQwnl64Z1hfuo0JSnH7gD 2VrgPiIxVFBAfP6VQk2ZxDNKg+6Ehrhpfpajav6rDqiuPlQA+KmxovHxNRzp2eXG iYT3QdJfN3A5WHUOsPh2+flB4+cNd9VtDMfkACK5zNZwSV+OltGy0605txl6pBMm T+cXlPM+Z18StQJsdhSpwABrINlflQLBGX0NIAhSFljwtXLnLv7rhRr9JlfZb0c= =zCX6 -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
