Hi,
* Pawel Wiecek <[EMAIL PROTECTED]> [2007-09-01 04:00]:
> On Aug 31, 2:23pm, Nico Golde wrote:
> > this. The attached patch fixes the issue. I edited the=20
>
> Obviously you're talking about the patch you *didn't* attach, yes?
Thanks!
Attached.
Kind regards
Nico
--
Nico Golde - http://ngold
On Aug 31, 2:23pm, Nico Golde wrote:
> this. The attached patch fixes the issue. I edited the=20
Obviously you're talking about the patch you *didn't* attach, yes?
Pawel
--
(___) | Pawel Wiecek - Coven / Svart - |
< o o > | http://www.coven.vmh.ne
Hi,
since the maintainer seems to be MIA I am going to 0-day NMU
this. The attached patch fixes the issue. I edited the
source directly since a) the maintainer did it too and b) I
didn't want to introduce dpatch in a security fix.
The patch will be also archived on:
http://people.debian.org/~ni
Package: star
Version: 1.5a67-1
Severity: grave
Tags: security
Justification: user security hole
A vulnerability has been found in star. From CVE-2007-4558:
"Directory traversal vulnerability in extract.c in star before 1.5a84 allows
user-assisted remote attackers to overwrite arbitrary files vi
4 matches
Mail list logo
