FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > ArchLinux > ArchLinux Development

 
 
LinkBack Thread Tools
 
Old 03-23-2009, 06:52 AM
Jan de Groot
 
Default glib2 2.16.0 (security issue)

This release fixes a security issue:
glib/gbase64.c: Avoid integer overflows in the base64 29 functions.
Fixes CVE-2008-4316

This is a major version update that should be compatible with the old
2.14 series and is a requirement for GNOME 2.26. Please signoff for both
architectures.
 
Old 03-23-2009, 02:58 PM
Daniel Isenmann
 
Default glib2 2.16.0 (security issue)

On Mon, 23 Mar 2009 08:52:46 +0100
Jan de Groot <jan@jgc.homeip.net> wrote:

> This release fixes a security issue:
> glib/gbase64.c: Avoid integer overflows in the base64 29 functions.
> Fixes CVE-2008-4316
>
> This is a major version update that should be compatible with the old
> 2.14 series and is a requirement for GNOME 2.26. Please signoff for
> both architectures.

Installed and every application (firefox, xchat, pidgin, etc.) is
running fine.

Signoff x86_64.

Daniel
 
Old 03-24-2009, 03:11 PM
Pierre Schmitz
 
Default glib2 2.16.0 (security issue)

Am Montag 23 März 2009 08:52:46 schrieb Jan de Groot:
> This release fixes a security issue:
> glib/gbase64.c: Avoid integer overflows in the base64 29 functions.
> Fixes CVE-2008-4316
>
> This is a major version update that should be compatible with the old
> 2.14 series and is a requirement for GNOME 2.26. Please signoff for both
> architectures.

If you meant glib2-2.20.0-1 I'll sign-off for both arches.

--

Pierre Schmitz


Clemens-August-Straße 76
53115 Bonn

Telefon 0228 9716608
Mobil 0160 95269831
Jabber pierre@jabber.archlinux.de
WWW http://www.archlinux.de
 
Old 03-24-2009, 08:47 PM
Jan de Groot
 
Default glib2 2.16.0 (security issue)

On Tue, 2009-03-24 at 17:11 +0100, Pierre Schmitz wrote:
> Am Montag 23 März 2009 08:52:46 schrieb Jan de Groot:
> > This release fixes a security issue:
> > glib/gbase64.c: Avoid integer overflows in the base64 29 functions.
> > Fixes CVE-2008-4316
> >
> > This is a major version update that should be compatible with the old
> > 2.14 series and is a requirement for GNOME 2.26. Please signoff for both
> > architectures.
>
> If you meant glib2-2.20.0-1 I'll sign-off for both arches.
>

Yes, that's what I actually meant
gtk2 has this version, that's what caused the confusion.
 

Thread Tools




All times are GMT. The time now is 05:00 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org