Date: Sat, 14 Aug 2004 13:07:35 +0200 From: Oliver Eikemeier <eikemeier@fillmore-labs.com> To: Michael Abbott <michael@araneidae.co.uk> Cc: ports@freebsd.org Subject: Re: [ GLSA 200408-10 ] gv: Exploitable Buffer Overflow (fwd) Message-ID: <2593165E-EDE2-11D8-87C4-00039312D914@fillmore-labs.com> In-Reply-To: <20040814092146.H98241@saturn.home>
next in thread | previous in thread | raw e-mail | index | archive | help
Michael Abbott wrote: > The vulnerability report below was published on bugtraq on Thursday, > but I see that the print/gv port is still on the vulnerable (3.5.8-r3) > version and that (as of last night) this vulnerability is not reported > by portaudit. > > Am I forwarding this report to the right place? More or less. While Gentoo decided to fix this bug now in version 3.5.8-r4, we considered it better to fix it in version 3.5.8_1 (October 18th 2002). Usually old vulnerabilites aren't added to the portaudit database (due to the effort necessary). -Oliver
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2593165E-EDE2-11D8-87C4-00039312D914>