|
From: | GNU bug Tracking System |
Subject: | bug#41525: closed (CVE-2020-12762: json-c) |
Date: | Wed, 21 Oct 2020 04:28:02 +0000 |
Your message dated Wed, 21 Oct 2020 00:27:39 -0400 with message-id <875z74430k.fsf@gmail.com> and subject line Re: bug#41525: CVE-2020-12762: json-c has caused the debbugs.gnu.org bug report #41525, regarding CVE-2020-12762: json-c to be marked as done. (If you believe you have received this mail in error, please contact help-debbugs@gnu.org.) -- 41525: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=41525 GNU Bug Tracking System Contact help-debbugs@gnu.org with problems
--- Begin Message ---Subject: CVE-2020-12762: json-c Date: Mon, 25 May 2020 14:06:47 +0200 Hi, our package json-c is vulnerable to CVE-2020-12762[1]. Be careful when applying the “fix”, since it broke a lot of packages on Ubuntu and Gentoo[2] in the past week. Lars [1] https://nvd.nist.gov/vuln/detail/CVE-2020-12762 [2] https://bugs.gentoo.org/722150
--- End Message ---
--- Begin Message ---Subject: Re: bug#41525: CVE-2020-12762: json-c Date: Wed, 21 Oct 2020 00:27:39 -0400 User-agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) Hello, Lars-Dominik Braun <lars@6xq.net> writes: > Hi, > > our package json-c is vulnerable to CVE-2020-12762[1]. Be careful when > applying the “fix”, since it broke a lot of packages on Ubuntu and > Gentoo[2] in the past week. > > Lars > > [1] https://nvd.nist.gov/vuln/detail/CVE-2020-12762 > [2] https://bugs.gentoo.org/722150 Thanks for the report! This was fixed by Efraim on the 6th of August, with commit 10b40489742bdaa0d193c00dff1446b11c081f6a. Closing, Maxim
--- End Message ---
[Prev in Thread] | Current Thread | [Next in Thread] |