Re: DSA-2283-1 vs. tracker

To: debian-security-tracker@lists.debian.org
Subject: Re: DSA-2283-1 vs. tracker
From: Francesco Poli <invernomuto@paranoici.org>
Date: Tue, 26 Jul 2011 19:30:22 +0200
Message-id: <[🔎] 20110726193022.1849286cf72552298632d833@paranoici.org>
In-reply-to: <[🔎] 20110725222131.GB3199@pisco.westfalen.local>
References: <[🔎] 20110725215215.7fda8388a8a474a762fb6e34@paranoici.org> <[🔎] 20110725222131.GB3199@pisco.westfalen.local>

On Tue, 26 Jul 2011 00:21:31 +0200 Moritz Mühlenhoff wrote:

> On Mon, Jul 25, 2011 at 09:52:15PM +0200, Francesco Poli wrote:
> > Hi all,
> > it seems to me that the epoch is missing from the fixed squeeze version
> > of krb5-appl in the DSA-2283-1 [1] tracker page [2].
> 
> Why? It's already there:
> 
> [25 Jul 2011] DSA-2283-1 krb5-appl - programming error
>         {CVE-2011-1526}
>         [squeeze] - krb5-appl 1:1.0.1-1.1

Well, it was not there, when I wrote my message!   ;-)
It seems that Mike Gilbert silently fixed it, without replying to my
message.

http://anonscm.debian.org/viewvc/secure-testing/data/DSA/list?r1=16985&r2=16987&pathrev=16989

> 
> > Moreover, the DSA says that sid will be fixed soon, but the tracker
> > seems to think that the CVE does not affect sid.
> 
> Thanks, fixed.

Thanks to you.
Now everything looks fine.



-- 
 http://www.inventati.org/frx/frx-gpg-key-transition-2010.txt
 New GnuPG key, see the transition document!
..................................................... Francesco Poli .
 GnuPG key fpr == CA01 1147 9CD2 EFDF FB82  3925 3E1C 27E1 1F69 BFFE

Attachment: pgp9HAXbXdq3v.pgp
Description: PGP signature

Reply to:

References:
- DSA-2283-1 vs. tracker
  - From: Francesco Poli <invernomuto@paranoici.org>
- Re: DSA-2283-1 vs. tracker
  - From: Moritz Mühlenhoff <jmm@inutil.org>

Prev by Date: Re: DSA-2283-1 vs. tracker
Next by Date: Re: Getting started
Previous by thread: Re: DSA-2283-1 vs. tracker
Next by thread: Re: [Secure-testing-commits] r17007 - data/CVE
Index(es):
- Date
- Thread