Log Message: |
- fixed CVE-2011-2896, infinite loop or heap-based buffer overflow allows
remote attackers to possibly execute arbitrary code via a crafted compressed
stream (str3867.patch, from upstream)
- fixed CVE-2011-3170, heap-based buffer overflow allows remote attackers
to possibly execute arbitrary code (str3914.patch, from upstream)
|