Comment 1 Robert Buchholz (RETIRED) 2009-04-02 00:01:04 UTC

Created attachment 187036 [details, diff]
xfig-3.2.5-mkstemp.patch

Comment 2 Robert Buchholz (RETIRED) 2009-06-08 15:57:58 UTC

pva, ping

Comment 3 Robert Buchholz (RETIRED) 2009-06-11 14:28:05 UTC

The patch above is incomplete, see additional analysis by Tomas Hoger (RedHat): https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-1962

Comment 4 Peter Volkov (RETIRED) 2010-01-14 20:44:33 UTC

Should be fixed in 3.2.5b. And well... Debian slacks even more since hunk for u_print.c is still not there while we have everything in place. I'll try to open bug since I have more to share with Roland who does great job for Debian.

Comment 5 Peter Volkov (RETIRED) 2010-01-14 20:46:55 UTC

Oh, and about stabilization. Too many changes there so if possible I'd like to postpone it on one week. In any case xfig is better to be stabilized together with media-gfx/transfig-3.2.5c.

Comment 6 Peter Volkov (RETIRED) 2010-01-22 15:02:14 UTC

Week passed, no bugs opened. Arch teams, please, stabilize:

media-gfx/xfig-3.2.5b
media-gfx/transfig-3.2.5c

Comment 7 Brent Baude (RETIRED) 2010-01-23 15:04:27 UTC

ppc64 done

Comment 8 Tobias Klausmann (RETIRED) 2010-01-23 15:15:09 UTC

Stable on alpha.

Comment 9 Jeroen Roovers (RETIRED) 2010-01-23 17:24:19 UTC

Stable for HPPA.

Comment 10 Christian Faulhammer (RETIRED) 2010-01-23 21:47:46 UTC

x86 stable

Comment 11 Raúl Porcel (RETIRED) 2010-01-24 17:53:02 UTC

ia64/sparc stable

Comment 12 Markus Meier 2010-01-31 00:18:10 UTC

amd64 stable

Comment 13 Joe Jezak (RETIRED) 2010-02-10 03:51:36 UTC

Marked ppc stable.

Comment 14 Tim Sammut (RETIRED) 2010-12-10 07:09:06 UTC

GLSA Vote: No.

Comment 15 Sune Kloppenborg Jeppesen (RETIRED) 2011-01-02 19:09:21 UTC

GLSA Vote: No.

Comment 16 Tim Sammut (RETIRED) 2011-01-02 19:25:10 UTC

(In reply to comment #15)
> GLSA Vote: No.
> 

Thank you. Closing noglsa.