emacs-bug-tracker
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#41525: closed (CVE-2020-12762: json-c)

From: GNU bug Tracking System
Subject: bug#41525: closed (CVE-2020-12762: json-c)
Date: Wed, 21 Oct 2020 04:28:02 +0000 
Your message dated Wed, 21 Oct 2020 00:27:39 -0400
with message-id <875z74430k.fsf@gmail.com>
and subject line Re: bug#41525: CVE-2020-12762: json-c
has caused the debbugs.gnu.org bug report #41525,
regarding CVE-2020-12762: json-c
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs@gnu.org.)


-- 
41525: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=41525
GNU Bug Tracking System
Contact help-debbugs@gnu.org with problems
--- Begin Message --- Subject: CVE-2020-12762: json-c Date: Mon, 25 May 2020 14:06:47 +0200 
Hi,

our package json-c is vulnerable to CVE-2020-12762[1]. Be careful when
applying the “fix”, since it broke a lot of packages on Ubuntu and
Gentoo[2] in the past week.

Lars

[1] https://nvd.nist.gov/vuln/detail/CVE-2020-12762
[2] https://bugs.gentoo.org/722150

--- End Message ---
--- Begin Message --- Subject: Re: bug#41525: CVE-2020-12762: json-c Date: Wed, 21 Oct 2020 00:27:39 -0400 User-agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) 
Hello,

Lars-Dominik Braun <lars@6xq.net> writes:

> Hi,
>
> our package json-c is vulnerable to CVE-2020-12762[1]. Be careful when
> applying the “fix”, since it broke a lot of packages on Ubuntu and
> Gentoo[2] in the past week.
>
> Lars
>
> [1] https://nvd.nist.gov/vuln/detail/CVE-2020-12762
> [2] https://bugs.gentoo.org/722150

Thanks for the report!

This was fixed by Efraim on the 6th of August, with commit
10b40489742bdaa0d193c00dff1446b11c081f6a.

Closing,

Maxim

--- End Message ---
reply via email to
[Prev in Thread] Current Thread [Next in Thread]