Re: Installed samba 2.2.2-11 (i386 source all)

To: Aaron Lehmann <aaronl@vitelus.com>
Cc: debian-devel@lists.debian.org, Steve Langasek <vorlon@netexpress.net>
Subject: Re: Installed samba 2.2.2-11 (i386 source all)
From: "Eloy A. Paris" <eloy.paris@usa.net>
Date: Fri, 25 Jan 2002 16:38:29 -0500
Message-id: <[🔎] 20020125213828.GA31303@antenas.dyndns.org>
In-reply-to: <[🔎] 20020125140133.A28096@debian.org>
References: <E16T7Dw-0005TP-00@auric.debian.org> <[🔎] 20020125140133.A28096@debian.org>

Aaron,

On Fri, Jan 25, 2002 at 02:01:33PM -0600, Aaron Lehmann wrote:

> Urgency: low is inappropriate for an upload fixing a root exploit.
> The version in testing is sill vulnerable.

My apologies. I did the upload in a hurry, and also I didn't
know (until earlier this week) that setting the priority to
'high' would expedite the move from unstable to testing.

I'll do another upload with the priority set to 'high'
to expedite the process.

> Why wasn't the vulnerability even announced publically other than
> in this changelog?

The original message from Christian Jaeger <christian.jaeger@sl.ethz.ch>
was sent to security@debian.org. It is my understanding that messages
sent there are forwarded to debian-private. Also the problem does not
exist in stable.

Cheers,

Eloy.-

Reply to:

References:
- Re: Installed samba 2.2.2-11 (i386 source all)
  - From: Aaron Lehmann <aaronl@vitelus.com>

Prev by Date: Re: What is woody's release process? [was: woody: Remaining RC bugs in base system]
Next by Date: uniquely identifying a maintainer...
Previous by thread: Re: Installed samba 2.2.2-11 (i386 source all)
Next by thread: Retiring from Debian
Index(es):
- Date
- Thread