* [SECURITY] mcrypt
@ 2012-11-01 21:46 Yaakov (Cygwin/X)
0 siblings, 0 replies; only message in thread
From: Yaakov (Cygwin/X) @ 2012-11-01 21:46 UTC (permalink / raw)
To: cygwin-apps
Dr. Volker Zell,
Security vulnerabilities (CVE-2012-4409, CVE-2012-4527) have been
reported for the mcrypt package. Please rebuild 2.6.8 with the
following patches:
http://pkgs.fedoraproject.org/cgit/mcrypt.git/plain/mcrypt-CVE-2012-4409.patch
http://pkgs.fedoraproject.org/cgit/mcrypt.git/plain/mcrypt-CVE-2012-4527-80-width-patch
There are other patches in that git repo that you may wish to consider
adding as well, if you haven't already.
Thanks,
Yaakov
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2012-11-01 21:46 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2012-11-01 21:46 [SECURITY] mcrypt Yaakov (Cygwin/X)
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).