Hi Doug, No problem on the reporting, glad I could help.
Take care, Chris On Mon, Feb 10, 2020 at 5:37 PM Douglas R. Reno via blfs-support <[email protected]> wrote: > > > On 2/10/20 1:32 PM, Chris Gorman via blfs-support wrote: > > Hello All, > > > > Just found this CVE on bugtraq. Thanks to the wonderful folks at > > Debian security. I've patched my libexif, but I thought others might > > want to do so as well. I am attaching the patch that fixes the > > potential exploit, but you can find it at > > https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566. > > > > Take care. > > > > Chris > > Hi Chris, > > I backported the patch to 0.6.21 and added a patch to BLFS at r22652. > > Thank you for reporting! > > - Doug > > -- > http://lists.linuxfromscratch.org/listinfo/blfs-support > FAQ: http://www.linuxfromscratch.org/blfs/faq.html > Unsubscribe: See the above information page -- http://lists.linuxfromscratch.org/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
