tag 750141 moreinfo
thanks
On Monday 02 June 2014 11:19:05 Hamish Moffatt wrote:
> Package: libqt4-xml
> Severity: serious
> Tags: security
> Justification: security
>
> Qt 4.8.6 has a fix for a denial of service attack due to XML entity
> expansion ("billion laughs attack"). This fix doesn't see
Processing commands for cont...@bugs.debian.org:
> tag 750141 moreinfo
Bug #750141 [libqt4-xml] libqt4-xml: vulnerable to billion laughs attack
Added tag(s) moreinfo.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
750141: http://bugs.debian.org/cgi-bin/bugreport.
Package: libqt4-xml
Severity: serious
Tags: security
Justification: security
Qt 4.8.6 has a fix for a denial of service attack due to XML entity
expansion ("billion laughs attack"). This fix doesn't seem to be in the
wheezy packages yet.
http://blog.qt.digia.com/blog/2014/04/24/qt-4-8-6-released/
Package: dolphin
Version: 4:4.12.4-1
Severity: normal
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
Using Dolphin for almost anything
* What exactly did you do (or not do) that was effective (or ineffective)
Processing commands for cont...@bugs.debian.org:
> tag 750047 pending
Bug #750047 [qtbase-opensource-src] qtbase-opensource-src: Fix FTBFS on arm64
Added tag(s) pending.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
750047: http://bugs.debian.org/cgi-bin/bugrepo
tag 750047 pending
thanks
Hi Wookey! Thanks for the patch, I have applied it to our repo, it will be
included on the next upload. Two things:
- I will include it directly in 5.3.0 which is currently building in
experimental waiting for the ACK of a transition I requested.
- arm64 was already m
6 matches
Mail list logo
