Bug#402822: CVE-2006-5330: HTTP header injection vulnerabilities

On Wed, 2006-12-13 at 07:32 +0100, Bart Martens wrote: > I'm confused now. Maybe "earlier" does mean "older". You seem to be > from the UK, so probably your English is better than mine. Yes, earlier means older here. > Is 9.0.21.78 affected or not according to this bulletin? It is not. I wou

Bug#402822: CVE-2006-5330: HTTP header injection vulnerabilities

found 402822 9.0.21.78.3 stop On Wed, 2006-12-13 at 07:17 +0100, Bart Martens wrote: > notfound 402822 9.0.21.78.3 > stop > > On Tue, 2006-12-12 at 21:30 +, Ben Hutchings wrote: > > According to the upstream security bulletin > >

Bug#402822: CVE-2006-5330: HTTP header injection vulnerabilities

notfound 402822 9.0.21.78.3 stop On Tue, 2006-12-12 at 21:30 +, Ben Hutchings wrote: > According to the upstream security bulletin > : > According to this bulletin version 9.0.21.78 is not affected. Also, version 9.0.28.0 does

Bug#402822: CVE-2006-5330: HTTP header injection vulnerabilities

According to Adobe's bulletin, the following versions are vulnerable: Flash Player 9.0.20.0 and earlier Flash Professional 8 [prior to 8.0.34.0] Flash Player 7.0.68.0 and earlier Therefore, although Adobe recommends upgrading to 9.0.28.0, I believe only sarge needs to be updated. The advisory at

Bug#402822: CVE-2006-5330: HTTP header injection vulnerabilities

Package: flashplugin-nonfree Version: 9.0.21.78.3 Severity: important Tags: security According to the upstream security bulletin : "Adobe has provided a Flash Player updates to resolve potential vulnerabilities in Adobe Flash Player.