After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 614025 - Backport 2.4 patch to fix CVE-2010-0409
Backport 2.4 patch to fix CVE-2010-0409
Status: RESOLVED OBSOLETE
Product: gmime
Classification: Other
Component: general
2.2.x
Other Linux
: Normal normal
: ---
Assigned To: Jeffrey Stedfast
Jeffrey Stedfast
Depends on:
Blocks:
 
 
Reported: 2010-03-26 15:57 UTC by Pacho Ramos
Modified: 2010-03-26 23:51 UTC
See Also:
GNOME target: ---
GNOME version: ---

Attachments
gmime-uuencode-buffer-overflow.patch (522 bytes, patch)
2010-03-26 15:58 UTC, Pacho Ramos 		none Details | Review

Description Pacho Ramos 2010-03-26 15:57:48 UTC 
Yes, I am aware of https://bugzilla.gnome.org/show_bug.cgi?id=613653#c6 , but gmime-2.2 is still needed since some apps (like dbmail) are still requiring it and, then, would be nice to get attached patch (taken from fedora and working ok also in Gentoo) commited in 2.2 branch to fix http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0409

Thanks a lot
Comment 1 Pacho Ramos 2010-03-26 15:58:30 UTC 
Created attachment 157185 [details] [review]
gmime-uuencode-buffer-overflow.patch
Comment 2 Jeffrey Stedfast 2010-03-26 18:22:04 UTC 
Please submit this to your distro maintainer(s). There's no real need for me to roll a new 2.2.x release for this.

If needed, I will gladly confirm to the distro maintainers that this patch is approved by me.

(or just link them here so that they can see I already approve ;-)

I just don't want to get stuck maintaining 2.2.x any longer since I consider it long dead, replaced by 2.4.x years ago.
Comment 3 Pacho Ramos 2010-03-26 20:38:22 UTC 
No problem, I already commited it in Gentoo, but wanted to be sure upstream was aware.

Best regards :-)
Comment 4 Jeffrey Stedfast 2010-03-26 23:51:08 UTC 
ok, cool