[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
mcrypt CVE-2012-{4409,4527} [was Re: [PATCH 1/1] gnu: unrtf: Fix CVE-201
From: |
Leo Famulari |
Subject: |
mcrypt CVE-2012-{4409,4527} [was Re: [PATCH 1/1] gnu: unrtf: Fix CVE-2016-10091.] |
Date: |
Wed, 4 Jan 2017 02:50:05 -0500 |
User-agent: |
Mutt/1.7.2 (2016-11-26) |
On Wed, Jan 04, 2017 at 02:27:57AM -0500, Leo Famulari wrote:
> Of course, the patch I sent on January 1 was completely broken.
>
> The patch it included from Debian was meant to be applied to the Debian
> package tree, not the UnRTF source code.
I found another instance of this in mcrypt, which I just fixed in
324f4fc559b4cf9f7df0bc334ac8a0a4fa040c22.
signature.asc
Description: PGP signature