Hi Steve, * Steve Kemp <[EMAIL PROTECTED]> [2007-10-29 21:59]: > On Mon Oct 29, 2007 at 19:33:17 +0100, Tomas Hoger wrote: > > > During testing of our updated dhcp packages, we have found out that > > patch for CVE-2007-5365 used by OpenBSD was not sufficient and it was > > still possible to crash dhcpd. Your dhcp packages released in DSA > > 1388-1 also seem affected. You can find better patch based on dhcp-3.x > > code here: > > > > https://bugzilla.redhat.com/show_bug.cgi?id=327781#c5 > > > > Note: [EMAIL PROTECTED] was notified on 2007-10-23. > > Updated DSA 1388-3 released on 2007-10-29. > > Thanks, we have a built package already. I'm not sure who is > releasing it - I guess I should since I did the previous one. > I'll chase it tomorrow/wednesday.
I'll reupload the NMU for unstable to fix this. Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgp2cEMwytf4M.pgp
Description: PGP signature