Re: Processing of texlive-bin_2007-14+lenny1_i386.changes
On Sun, Dec 09, 2007 at 12:36 +0100, Norbert Preining wrote:
> On Sa, 08 Dez 2007, Archive Administrator wrote:
> > texlive-bin_2007-14+lenny1_i386.changes uploaded successfully to localhost
> > along with the files:
> > texlive-bin_2007-14+lenny1.dsc
>
> What is that????
I wondered, too. Then I found
<URL:http://packages.qa.debian.org/t/texlive-bin/news/20071208T233215Z.html>
containing:
texlive-bin (2007-14+lenny1) testing-security; urgency=high
.
* Non-maintainer upload by the security team
* Fix stack based buffer overflow in hpc.c to prevent user-assisted
attackers to execute arbitrary code via a DVI file with a long href
tag
Fixes: CVE-2007-5935
I have no idea why this was sent to
debian-testing-changes@lists.debian.org but not to the maitainer
address.
cheerio
ralf
Reply to: