Upstream has fixed a number of potential integer overflows when allocating
memory by modifying how memory is now allocated.
The patch take from CVS, then clean up is very large. I don't know the source
well enough to determine how much of this is needed for our packages.
Created attachment 128606 [details]
Patch extracted from upstream CVS
We're including this as part of CVE-2006-1861 so I'm marking this a duplicate of
*** This bug has been marked as a duplicate of 190593 ***