Re: Uploaded Security Fix to ClamSMTP

To: debian-release@lists.debian.org
Subject: Re: Uploaded Security Fix to ClamSMTP
From: Chad Walstrom <chewie@wookimus.net>
Date: Mon, 23 May 2005 09:51:39 -0500
Message-id: <[🔎] 20050523145139.207513DE1@skuld.wookimus.net>
In-reply-to: <[🔎] 20050522184147.GE23219@mauritius.dodds.net>
References: <[🔎] 20050521190106.GA15042@wookimus.net> <[🔎] 20050522184147.GE23219@mauritius.dodds.net>

Steve Langasek <vorlon@debian.org>  wrote:
> Has this code been tested?

Ala the list archive::

    From: Brian Bird <brian@se...>
    RE: Security hole in Cheetah?  
    2005-04-22 08:56

    That"s great. I"ve done a very quick test and it seems ok, but I hope
    to try it out properly on Monday

Brian reports further problems not directly related to the tmp file
removal.

> Looks to me like this code can never work?

I haven't had a chance to really look at it, though I've verified that
the patch sent into BTS was the exact diff pulled from the upstream
CVS.

I'll send an email to the list expressing your concerns.

-- 
Chad Walstrom <chewie@wookimus.net>           http://www.wookimus.net/
           assert(expired(knowledge)); /* core dump */

Reply to:

References:
- Uploaded Security Fix to ClamSMTP
  - From: Chad Walstrom <chewie@wookimus.net>
- Re: Uploaded Security Fix to ClamSMTP
  - From: Steve Langasek <vorlon@debian.org>

Prev by Date: FreeRADIUS 1.0.2-4 security fix upload for sponsorship
Next by Date: Please allow mp32ogg 0.11-4 (Fix RC bug)
Previous by thread: Re: Uploaded Security Fix to ClamSMTP
Next by thread: extra, unused versions of gmime in sarge
Index(es):
- Date
- Thread