Steve, > Yasuhiro, > > On Thu, May 12, 2005 at 12:25:41AM +0900, ARAKI Yasuhiro wrote: > > In conclusion, we should ship libosip2 2.0.6 with sarge. > > And I will fix for 2.0.6. It includes a potential security risk. > > It is same as #305729. > > Well, the conclusion of my previous message was that, even though I don't > like the situation, libosip2 2.2.0 and siproxd have both been accepted into > sarge. The new versions have already reached testing.
Thanks. And I apologies for the error and any inconvenience. I worried about a "URI Parsing Heap Overflows" problem at libosip2 2.0.6 as #308737. (It was not included in after 2.0.7.) > But it does show that it's important for maintainers of related packages to > communicate. I take your warning to heart.. Thanks again. -- ARAKI Yasuhiro A Debian Official Developer <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
