From 7fc99295dbd7f46409c3b3eea28329b8d89d09e8 Mon Sep 17 00:00:00 2001 From: Aldas Nabazas Date: Sat, 26 Apr 2008 19:21:53 +0200 Subject: [PATCH] [boost] Updated (1_34_1 -> 1_35_0) : SECURITY - MEDIUM CVE-2008-0171 (Medium) : regex/v4/perl_matcher_non_recursive.hpp in the Boost regex library (aka Boost.Regex) in Boost 1.33 and 1.34 allows context-dependent attackers to cause a denial of service (failed assertion and crash) via an invalid regular expression. CVE-2008-0172 (Medium) : The get_repeat_type function in basic_regex_creator.hpp in the Boost regex library (aka Boost.Regex) in Boost 1.33 and 1.34 allows context-dependent attackers to cause a denial of service (NULL dereference and crash) via an invalid regular expression. --- develop/boost/boost.desc | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/develop/boost/boost.desc b/develop/boost/boost.desc index f8556a39d..31191587b 100644 --- a/develop/boost/boost.desc +++ b/develop/boost/boost.desc @@ -1,9 +1,8 @@ - [COPY] --- SDE-COPYRIGHT-NOTE-BEGIN --- [COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch. [COPY] [COPY] Filename: package/.../boost/boost.desc -[COPY] Copyright (C) 2006 - 2007 The OpenSDE Project +[COPY] Copyright (C) 2006 - 2008 The OpenSDE Project [COPY] Copyright (C) 2004 - 2006 The T2 SDE Project [COPY] Copyright (C) 1998 - 2004 Clifford Wolf [COPY] @@ -39,8 +38,7 @@ [L] OpenSource [S] Stable -[V] 1_34_1 +[V] 1_35_0 [P] X -----5---9 144.600 -[D] 2738025993 boost_1_34_1.tar.bz2 http://dl.sourceforge.net/sourceforge/boost/ - +[D] 2229912875 boost_1_35_0.tar.bz2 http://dl.sourceforge.net/sourceforge/boost/