X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:reply-to:date:from:to:subject:message-id
	:mime-version:content-type; q=dns; s=default; b=t/DUw2ohypLXieU0
	vEGv9+NvkizR/per/VwpikwvI0PkL8Gv36nZjN36UvZ6PA4KvthEmCscokuE/JnK
	AsolbxpJSrACgL2k6IziUnV+j2QKK8nBkC0yFXzvTISk5r/Z5uuPKXSCpg3Zc6M+
	4scUxPOL+0Gmcjnjzpj/IAAooDE=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:reply-to:date:from:to:subject:message-id
	:mime-version:content-type; s=default; bh=8FCO51db08bj85Yp3eyeLT
	6XvqE=; b=auu5DXySYjS9g8scQtAlXC4usOt/DtCMYwA4SAt4wh7x1mUpy+t4ks
	3JWAPhdDgVM/2IrUwBmfygHEBAPAHarb3pCNQwg06sn+oImH/QNyZTI+1tVCyFTS
	v4u+IyQqna8Qe5AfxfIRzMvC8c1kHWOH0fbosubL3zxxg0bZk5yrY=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-HELO: localhost.localdomain
Reply-To: cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-5.9 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.3.2
Date: Wed, 18 Feb 2015 12:25:55 +0100
From: Corinna Vinschen <corinna-cygwin AT cygwin DOT com>
To: cygwin AT cygwin DOT com
Subject: [ANNOUNCEMENT] Updated: file-5.22-1 [SECURITY]
Message-Id: <announce.20150218112555.GA28956@calimero.vinschen.de>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
User-Agent: Mutt/1.5.23 (2014-03-12)

I've updated the Cygwin version of file to 5.22-1.

This is an update to the latest official upstream version.  This
release fixes various CVE bugs:

  CVE-2014-9653: malformed elf file causes access to uninitialized memory
  CVE-2014-9621: limit string printing to 100 chars
  CVE-2014-9620: limit the number of ELF notes processed
  CVE-2014-8116: multiple denial of service issues (resource consumption)
  CVE-2014-8117: denial of service issue (resource consumption)


Have fun,
Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat, Inc.

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple