I'm running the patched quassel core on Stretch and it is working fine.
Scott K
signature.asc
Description: This is a digitally signed message part.
Hi Felix!
On Wed, Apr 25, 2018 at 11:28:53PM +0200, Felix Geyer wrote:
> Hi,
>
> On Wed, 25 Apr 2018 20:58:52 +0200 Salvatore Bonaccorso
> wrote:
> > Source: quassel
> > Version: 1:0.12.4-1
> > Severity: normal
> > Tags: patch security upstream
> > Control: fixed -1 1:0.12.5-1
> >
> > Hi Felix
Issue descriptions from Gentoo (input for DSA text). I'm not sure issue 2 is
really a security issue.
Vuln 1:
Title: quasselcore, corruption of heap metadata caused by qdatastream
leading to preauth remote code execution.
Severity: high, by default the server port is publicly open and the addres
Hi,
On Wed, 25 Apr 2018 20:58:52 +0200 Salvatore Bonaccorso
wrote:
> Source: quassel
> Version: 1:0.12.4-1
> Severity: normal
> Tags: patch security upstream
> Control: fixed -1 1:0.12.5-1
>
> Hi Felix,
>
> Filling this as bug to have an identifier, since no CVE has been
> assigned.
>
> https
Source: quassel
Version: 1:0.12.4-1
Severity: normal
Tags: patch security upstream
Control: fixed -1 1:0.12.5-1
Hi Felix,
Filling this as bug to have an identifier, since no CVE has been
assigned.
https://www.quassel-irc.org/node/130
Commit "Implement custom deserializer to add our own sanity c
5 matches
Mail list logo
