On Wed, Jan 10, 2007 at 12:15:41PM -0800, Russ Allbery wrote: > Marc 'HE' Brockschmidt <firstname.lastname@example.org> writes: > > Sam Hartman <email@example.com>, Sam Hartman <firstname.lastname@example.org> > > writes: > >> krb5 1.4.4-6 fixes mit-sa-2006-2 (see > >> http://web.mit.edu/kerberos/advisories/ ) which is a fairly serious > >> bug found through a mostly unrelated problem. > > > What's with mit-sa-2006-03 (CVE-2006-6144)? I have no idea about krb, so > > please forgive me if that question is too stupid :) > > It only affects 1.5 and later. > For info, the tracking information we use is at: http://security-tracker.debian.net/tracker/CVE-2006-6143 http://security-tracker.debian.net/tracker/CVE-2006-6144 Testing is vulnerable to CVE-2006-6143, and I reccomend this package for unblock. Thanks, Neil -- <Tincho> 'Maybe you can try to find a nice hotel by shouting in the Mexico DF streets "where could a gringo find a decent hotel in this dirty third world lame excuse for a country?". I'm sure the people will rush to help you, as we south americans love to be called third world in a demeaning way.'
Description: Digital signature