Moritz Muehlenhoff <j...@inutil.org> wrote: > > Hi Jay, > another security issue was discovered by Red Hat's Huzaifa S. Sidhpurwala: > The Red Hat bug contains the necessary details: > https://bugzilla.redhat.com/show_bug.cgi?id=867235
Looking at the bugzilla issue, it's not completely clear to me whether this was fixed in 4.0.2 or 4.0.3, and the patch will be pretty different for the 3.x versions and the 4.x versions. I'll see what I can do about finding time very soon to address this. I'm a little concerned about Tom Lane's comment about a behavioral change: https://bugzilla.redhat.com/show_bug.cgi?id=867235#c6 I'll look at it a little before blindly taking the diff. -- Jay Berkenbilt <q...@debian.org> -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
