On 8/17/2008 6:00 PM, Yaakov (Cygwin Ports) wrote: > libvorbis > problem: heap-based buffer overflows (CVE-2008-1419/1420/1423) 1.2.0-2, released May 14, 2008, includes patches for these issues.[1] [1] http://cygwin.com/ml/cygwin-announce/2008-05/msg00009.html -- David Rothenberger ---- daveroth@acm.org QOTD: "Our parents were never our age."