Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?

gnash-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?

From:	Martin Guy
Subject:	Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?
Date:	Wed, 9 May 2007 14:35:54 +0100

> I have been notified that there was a security vulnerability in gnash
> 7.2: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2500
>
> Is it fixed in HEAD? Is there a patch lying around for that issue?

  I believe it was fixed ages ago, I also just stumbled across this the
other day. I don't really see a way to have them update the page.


I particularly like "Impact Type:  Provides administrator access".
I guess these people always browse as root maybe... or use windows...

  M

[Prev in Thread]

Current Thread

[Next in Thread]

[Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?, Patrice Dumas, 2007/05/09
- Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?, Rob Savoye, 2007/05/09
  - Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?, Martin Guy <=
- Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?, strk, 2007/05/09

Prev by Date: Re: [Gnash-dev] FileIO extension eating up memory (was: Building extensions)
Next by Date: [Gnash-dev] Default AGG RBG formats
Previous by thread: Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?
Next by thread: Re: [Gnash-dev] is CVE-2007-2500 fixed in gnash HEAD?
Index(es):
- Date
- Thread