GNU bug report logs - #28058
[PATCH] gnu: catdoc: Fix CVE-2017-11110.

Previous Next

Package: guix-patches;

Reported by: Alex Vong <alexvong1995 <at> gmail.com>

Date: Fri, 11 Aug 2017 21:53:01 UTC

Severity: important

Tags: patch, security

Done: Alex Vong <alexvong1995 <at> gmail.com>

Bug is archived. No further changes may be made.

Full log

Message #10 received at 28058-done <at> debbugs.gnu.org (full text, mbox):

From: Alex Vong <alexvong1995 <at> gmail.com>
To: Marius Bakke <mbakke <at> fastmail.com>
Cc: guix-devel <at> gnu.org, 28058-done <at> debbugs.gnu.org
Subject: Re: [PATCH] gnu: catdoc: Fix CVE-2017-11110.
Date: Sun, 13 Aug 2017 00:21:21 +0800

[Message part 1 (text/plain, inline)]

Marius Bakke <mbakke <at> fastmail.com> writes:

> Alex Vong <alexvong1995 <at> gmail.com> writes:
>
>> Severity: important
>> Tags: patch security
>>
>> Hello,
>>
>> This patch fixes the latest CVE of catdoc. The upstream repo[0] is not
>> updated for more than a year, so I grab the patch from openSUSE instead
>> (which is also used by Debian).
>
> Thanks for this, pushed!
>
> [...]
>
Thanks!

>> (I am re-sending this mail for the 3rd time since I didn't receive a
>> reply from debbugs. This time I decide to mail to guix-devel as well
>> just in case it doesn't work again.) 
>
> No idea what's up with that. Does it work if you omit the debbugs
> control headers? Perhaps processing is disabled for guix-patches, or
> something.

This time it works. I guess debbugs was doing some maintaince work hence
temporarily unavailable.

[signature.asc (application/pgp-signature, inline)]

This bug report was last modified 7 years and 282 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #28058 [PATCH] gnu: catdoc: Fix CVE-2017-11110.

GNU bug report logs - #28058
[PATCH] gnu: catdoc: Fix CVE-2017-11110.