This is the mail archive of the cygwin-apps mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[SECURITY] mcrypt


Dr. Volker Zell,

Security vulnerabilities (CVE-2012-4409, CVE-2012-4527) have been
reported for the mcrypt package.  Please rebuild 2.6.8 with the
following patches:

http://pkgs.fedoraproject.org/cgit/mcrypt.git/plain/mcrypt-CVE-2012-4409.patch
http://pkgs.fedoraproject.org/cgit/mcrypt.git/plain/mcrypt-CVE-2012-4527-80-width-patch

There are other patches in that git repo that you may wish to consider
adding as well, if you haven't already.

Thanks,


Yaakov



Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]