[cvslog] (2008-10-31 18:11:10 UTC) Module eggdrop1.6: Change committed!

cvslog cvs at tsss.org
Fri Oct 31 12:11:10 CST 2008


CVSROOT    : /usr/local/cvsroot
Module     : eggdrop1.6
Commit time: 2008-10-31 18:11:10 UTC
Commited by: Tothwolf <tothwolf at techmonkeys.org>

Modified files:
     doc/Changes1.6 doc/Versions

Log message:

Make it clear that SA25276 was fixed.

---------------------- diff included ----------------------
Index: eggdrop1.6/doc/Changes1.6
diff -u eggdrop1.6/doc/Changes1.6:1.6 eggdrop1.6/doc/Changes1.6:1.7
--- eggdrop1.6/doc/Changes1.6:1.6	Fri Jul 11 18:29:28 2008
+++ eggdrop1.6/doc/Changes1.6	Fri Oct 31 13:10:59 2008
@@ -1,4 +1,4 @@
-$Id: Changes1.6,v 1.6 2008-07-11 23:29:28 tothwolf Exp $
+$Id: Changes1.6,v 1.7 2008-10-31 18:10:59 tothwolf Exp $
 
 Eggdrop Changes (since version 1.6.0)
 
@@ -186,7 +186,9 @@
   - Fixed a couple of typos in the FEATURES file.
     Patch by: Tomas Szaniszlo
 
-  - Fixed two buffer overflows in servmsg.c (CVE-2007-2807).
+  - Fixed two potential buffer overflows in servmsg.c
+    Reference: Secunia Advisory: SA25276
+    Reference: CVE-2007-2807
     Found by: Bow Sineath / Patch by: Nico Golde, Wcc
 
   - Fixed compatibility problems with certain time_t implementations.
@@ -507,7 +509,7 @@
 
   - Don't always set SHARE_OFFERED status in check_expired_tbufs() for
     linking bots.
-    Fixes Secunia Advisory: SA10858
+    Reference: Secunia Advisory: SA10858
     Originally reported to Full-Disclosure by Giuseppe Caulo
     Patch by: Luca De Roberto, Dania Stolfi, Giuseppe Caulo
 
Index: eggdrop1.6/doc/Versions
diff -u eggdrop1.6/doc/Versions:1.2 eggdrop1.6/doc/Versions:1.3
--- eggdrop1.6/doc/Versions:1.2	Thu Jul 10 04:22:04 2008
+++ eggdrop1.6/doc/Versions	Fri Oct 31 13:10:59 2008
@@ -1,4 +1,4 @@
-$Id: Versions,v 1.2 2008-07-10 09:22:04 tothwolf Exp $
+$Id: Versions,v 1.3 2008-10-31 18:10:59 tothwolf Exp $
 
 This file lists the release dates for most of the officially released
 versions of Eggdrop and notes forks, bug fix patches and maintenance
@@ -10,7 +10,7 @@
 
 Version   Release date
 
-1.6.19    Apr 18, 2008
+1.6.19    Apr 18, 2008 [Fix for Secunia Advisory SA25276 / CVE-2007-2807]
 1.6.18    Jul  9, 2006 [Major bind code function changes]
 1.6.17    Aug 22, 2004
 1.6.16    May 31, 2004 [Fix for Secunia Advisory SA10858]
----------------------- End of diff -----------------------



More information about the Changes mailing list