couchdb-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Noah Slater <nsla...@apache.org>
Subject Re: When did the fix for CVE-2010-0009 land? (Attn. Jan)
Date Mon, 25 Feb 2013 20:18:28 GMT
My mistake Bob. I actually got my CVE number wrong. Sorry for wasting your
time. I'll start a new thread. (In addition to the second one I just
created.)


On 25 February 2013 19:45, Robert Newson <rnewson@apache.org> wrote:

> looks like 0.10.2 (git diff 0.10.1..0.10.2 src/couchdb/couch_util.erl)
>
> B.
>
> On 25 February 2013 19:36, Noah Slater <nslater@apache.org> wrote:
> > Hi,
> >
> > The note for CVE-2010-0009 was never added to NEWS or CHANGES. Based on
> > Jan's disclosure, it looks like the fix only landed in 1.0.2. Is that
> > correct? If it is, I will correct our documentation.
> >
> > Please reply ASAP, this is blocking other work.
> >
> > Thanks!
> >
> > --
> > NS
>



-- 
NS

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message