Package: unadf
Version: 0.7.11a-5
Severity: grave
Tags: security
Justification: user security hole
X-Debbugs-Cc: Debian Security Team
Dear Maintainer,
See upstream ADFLib commit 8e973d7b8945 ("Fix unsafe extraction by using
mkdir() instead of shell command") [1].
'unadf' passes the directory
per
fixes have been backported to v6.1 stable kernels.
BR,
Jani.
--
Jani Nikula, Intel Open Source Graphics Center
Package: msmtp
Version: 1.8.1-2
Severity: important
Dear Maintainer,
I store my dotfiles in a git repo, and symlink the actual dotfiles to
the git checkout. After msmtp update, the AppArmor profile blocked this:
[622972.288769] audit: type=1400 audit(1547459536.817:103): apparmor="DENIED"
Package: sparse
Version: 0.5.0-1+b1
Severity: important
Dear Maintainer,
There's a nasty out-of-bounds array access bug in sparse 0.5.0 that
spews out tons of unwarranted warnings:
./include/linux/err.h:35:16: warning: dereference of noderef expression
./include/linux/err.h:30:23: warning:
On Fri, 04 Nov 2016, David Bremner wrote:
> I wonder if this some kind of race condition in `notmuch new`
> processing.
Do you have some other software modifying your mail store while you're
running notmuch new?
BR,
Jani.
5 matches
Mail list logo