On Sun, Sep 04, 2005 at 18:04:19 +0200, Moritz Muehlenhoff wrote:
> According to
> http://mail.gnome.org/archives/gnumeric-list/2005-August/msg00073.html
> upstream doubts that it's exploitable in Gnumeric, though.
Upstream's position on this hasn't changed:
[21:29] <@gmorten> JHM: Debian 326628 NOTABUG.
[21:53] <@JHM> gmorten: Yes, I know.
[22:08] <@gmorten> JHM: for the record, Mandriva, Ubunto, and Gentoo all have
responded that they do not know of anything concrete that
would have Gnbumeric vulnerable.
[22:10] <@JHM> gmorten: That's not at all clear from
http://www.ubuntulinux.org/usn/usn-173-4 though.
[22:11] <@gmorten> JHM: Indeed not, and that is what scared Gentoo to issue a
fix too. But I asked them.
[22:11] <@JHM> ok
[22:12] <@JHM> The next goffice will have a current copy of pcre for good
measure though, I presume?
[22:12] <@gmorten> maybe not the next, but it will be done soon.
[22:13] <@JHM> ok
--
I'm really not a very nice person. I can say "I don't care" with a straight
face, and really mean it.
Linus Torvalds on the linux-kernel list
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
