[SECURITY] mcrypt
Yaakov (Cygwin/X)
yselkowitz@users.sourceforge.net
Thu Nov 1 21:46:00 GMT 2012
Dr. Volker Zell,
Security vulnerabilities (CVE-2012-4409, CVE-2012-4527) have been
reported for the mcrypt package. Please rebuild 2.6.8 with the
following patches:
http://pkgs.fedoraproject.org/cgit/mcrypt.git/plain/mcrypt-CVE-2012-4409.patch
http://pkgs.fedoraproject.org/cgit/mcrypt.git/plain/mcrypt-CVE-2012-4527-80-width-patch
There are other patches in that git repo that you may wish to consider
adding as well, if you haven't already.
Thanks,
Yaakov
More information about the Cygwin-apps
mailing list