Hi all! I noticed a couple of tracker inconsistencies. DSA-1823-1 [1] claims that CVE-2009-1886 does not affect etch, squeeze or sid, and is fixed in lenny by samba/3.2.5-4lenny6. The tracker disagrees, as it claims that lenny (security) is still vulnerable [2] [1] http://lists.debian.org/debian-security-announce/2009/msg00135.html [2] http://security-tracker.debian.net/tracker/CVE-2009-1886 DSA-1824-1 [3] claims that CVE-2009-1151 is fixed in etch by phpmyadmin/2.9.1.1-11, in lenny by 2.11.8.1-5+lenny1, and in squeeze/sid by 3.1.3.1-1. The tracker disagrees, as it claims that etch (security) and lenny (security) are still vulnerable [4]. [3] http://lists.debian.org/debian-security-announce/2009/msg00136.html [4] http://security-tracker.debian.net/tracker/CVE-2009-1151 Please fix these inconsistencies. -- New location for my website! Update your bookmarks! http://www.inventati.org/frx ..................................................... Francesco Poli . GnuPG key fpr == C979 F34B 27CE 5CD8 DC12 31B5 78F4 279B DD6D FCF4
Attachment:
pgpFxACmMo_ZT.pgp
Description: PGP signature