-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 18 Apr 2008 13:23:27 +0200
Source: balsa
Binary: balsa
Architecture: source amd64
Version: 2.3.13-3
Distribution: stable
Urgency: low
Maintainer: Andrew Lau <netsnipe@users.sourceforge.net>
Changed-By: Josselin Mouette <joss@debian.org>
Description:
balsa - An e-mail client for GNOME
Changes:
balsa (2.3.13-3) stable; urgency=low
.
* 01_CVE-2007-5007.patch: fix for stack-based buffer overflow in the
ir_fetch_seq function, which might allow remote IMAP servers to
execute arbitrary code via a long response to a FETCH command.
Thanks Evil Ninja Squirrel for discovering the issue and providing a
patch, and Nico Golde for signaling it.
Files:
769d0b75a1657077534f5be1be0c1182 1816 gnome optional balsa_2.3.13-3.dsc
05dedd44d30fbaf4460ccbd37b0d36fa 20492 gnome optional balsa_2.3.13-3.diff.gz
4655d3977aa33c141d11484d81a23584 2433302 gnome optional balsa_2.3.13-3_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFICInCrSla4ddfhTMRAhenAJ0ZgCV6LniQBRBr8gCuB2xXgzWj8QCdGg9A
swdpVggxvsFProcA4JHkfkU=
=zyur
-----END PGP SIGNATURE-----
Accepted:
balsa_2.3.13-3.diff.gz
to pool/main/b/balsa/balsa_2.3.13-3.diff.gz
balsa_2.3.13-3.dsc
to pool/main/b/balsa/balsa_2.3.13-3.dsc
balsa_2.3.13-3_amd64.deb
to pool/main/b/balsa/balsa_2.3.13-3_amd64.deb
