Re: Installed samba 2.2.2-11 (i386 source all)
On Fri, Jan 25, 2002 at 02:01:33PM -0600, Aaron Lehmann wrote:
> Urgency: low is inappropriate for an upload fixing a root exploit.
> The version in testing is sill vulnerable.
My apologies. I did the upload in a hurry, and also I didn't
know (until earlier this week) that setting the priority to
'high' would expedite the move from unstable to testing.
I'll do another upload with the priority set to 'high'
to expedite the process.
> Why wasn't the vulnerability even announced publically other than
> in this changelog?
The original message from Christian Jaeger <email@example.com>
was sent to firstname.lastname@example.org. It is my understanding that messages
sent there are forwarded to debian-private. Also the problem does not
exist in stable.