Red Hat Bugzilla – Bug 190324
CVE-2006-1900 multiple buffer overflows in amaya
Last modified: 2007-11-30 17:11:31 EST
All FE branches affected, should be fixed in upstream 9.5+. Interestingly,
%changelog of the FE amaya package says:
* Thu Apr 13 2006 Aurelien Bompard <gauret[AT]free.fr> 9.4-1
- upgrade to 9.5 to fix vulnerability
But the packages are still at 9.4.
/me is stupid, I forgot to update the version tag (but the tarball is version 9.5)
Fixed, and build requested for devel, FC-5 and FC-4
Ah, ok. By the way, 9.51 is out (which will probably cause Epoch bump needs
later: 9.4 < 9.5 < 9.51 > 9.6, so one could consider using 9.5.1 as the version
number if that update is ever put to the repo).
I orphaned this package since september 2005, so I'm going to update it for
security reasons, but that's all.