Re: upgrading xmlrpc-c

To: Adam Ciarciński <adam%netbsd.org@localhost>
Subject: Re: upgrading xmlrpc-c
From: Tim Zingelman <tez%netbsd.org@localhost>
Date: Wed, 14 Nov 2012 17:33:49 -0600

On Wed, Nov 14, 2012 at 10:45 AM, Adam Ciarciński <adam%netbsd.org@localhost> 
wrote:
>> Package xmlrpc-c-ss-1.16.42 has a denial-of-service vulnerability.  It
>> is also four years old.  Is there any reason we don't upgrade it to
>> 1.32?
>
> Just updated to 1.16.43.
> We use a super-stable branch, that's why it's not 1.32.

Adam,

Can you confirm that this update fixes http://secunia.com/advisories/50648/ ?

Thanks,

 - Tim

Follow-Ups:
- Re: upgrading xmlrpc-c
  - From: Adam Ciarciński

References:
- upgrading xmlrpc-c
  - From: D'Arcy J.M. Cain
- Re: upgrading xmlrpc-c
  - From: Adam Ciarciński

Prev by Date: Re: pkg_add problem with nosuid on /var
Next by Date: daily pkgsrc CVS update output
Previous by Thread: Re: upgrading xmlrpc-c
Next by Thread: Re: upgrading xmlrpc-c
Indexes:

Home | Main Index | Thread Index | Old Index