Your message dated Sat, 8 Aug 2009 10:43:37 +0200
with message-id <20090808084337.gc19...@yocto.gallu.homelinux.org>
and subject line no more CVE-2009-2295
has caused the Debian Bug report #535909,
regarding camlimages: CVE-2009-2295 several integer overflows
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
535909: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=535909
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
package: camlimages
version: 2.20-8
severity: serious
tags: security
hello,
camlimages is vulnerable to several integer overflows [1]. this has
not yet been fixed upstream, but has been addressed by redhat [2].
[1] http://www.ocert.org/advisories/ocert-2009-009.html
[2] https://bugzilla.redhat.com/show_bug.cgi?id=509531
--- End Message ---
--- Begin Message ---
Hello,
This bug has been solved with 1:3.0.1-2 before the bug was opened.
Regards
Sylvain Le Gall
--- End Message ---
