Date: Sat, 17 Jan 2015 12:55:41 +0100 From: Raphael Geissert <geissert@...ian.org> To: oss-security@...ts.openwall.com Cc: christoph.dalitz@...niederrhein.de Subject: CVE-2005-2096 and gamera Hi, While lurking around the Debian archive and codesearch, I noticed that gamera embeds a copy of zlib that is vulnerable to CVE-2005-2096. Oh joy. (Debian's package doesn't seem to be affected, as it does an rm -r on the embedded copy) http://codesearch.debian.net/ http://gamera.sourceforge.net/ Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ