Bug#664023: [CVE-2012-1175] gnash integer overflow

Luciano Bello luciano at debian.org
Wed Mar 14 22:24:41 UTC 2012


Package: gnash
Severity: grave
Tags: security patch

The following vulnerability had been reported against gnash: 
http://www.openwall.com/lists/oss-security/2012/03/14/5

The patch can be found in the report.

Please use CVE-2012-1175 for this issue and check if the stable version 
(0.8.8-5) is affected. If it's the case, can you prepare and patch for it? I can 
take care of the DSA.

Cheers,
luciano
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-flash-devel/attachments/20120314/9894f2f9/attachment.pgp>


More information about the pkg-flash-devel mailing list