This bug was fixed in the package libmms - 0.6.2-4
---
libmms (0.6.2-4) unstable; urgency=high
* Team upload.
[ Fabian Greffrath ]
* Remove myself from Uploaders.
[ Sebastian Ramacher ]
* Use urgency=high for security fix.
* debian/patches/0002-CVE-2014-2892.patch: Apply
This is CVE-2014-2892 -- http://www.openwall.com/lists/oss-
security/2014/04/18/14
Thanks
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-2892
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchp
This bug is currently marked public and libmms is in universe and
receives community support. I suggest requesting a CVE from the oss-
security list, then Ubuntu will pick it up after it is assigned.
** Changed in: libmms (Ubuntu)
Status: New => Triaged
--
You received this bug notificati
There is no CVE number. I am one of the libmms maintainers and was
privately notified of this vulnerability. I can provide the details, if
needed.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/130665
I didn't see any CVE numbers in their release notes, do you know if any
have already been assigned?
Thanks
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://b
