Viewing all changes in revision 19.
- Committer: Bazaar Package Importer
- Date: 2008-06-27 22:26:10 UTC
- Revision ID: james.westby@ubuntu.com-20080627222610-sa17ipidjs8ht4lc
* SECURITY UPDATE:
+ debian/patches/CVE-2007-6531.patch
- Stack-based buffer overflow in the Panel (xfce4-panel)
component in Xfce before 4.4.2 might allow remote attackers to
execute arbitrary code via Launcher tooltips. NOTE: a second
buffer overflow (over-read) in the xfce_mkdirhier
function was also reported, but it might not be exploitable
for a crash or code execution, so it is not a vulnerability.
* References
+ http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-6531
+ debian/patches/CVE-2007-6531.patch
- Stack-based buffer overflow in the Panel (xfce4-panel)
component in Xfce before 4.4.2 might allow remote attackers to
execute arbitrary code via Launcher tooltips. NOTE: a second
buffer overflow (over-read) in the xfce_mkdirhier
function was also reported, but it might not be exploitable
for a crash or code execution, so it is not a vulnerability.
* References
+ http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-6531
- files added:
- debian/patches/CVE_2007-6531.patch
- files modified:
- debian/changelog
expand all
collapse all
added
removed
