On Tue, 26 Jul 2011 00:21:31 +0200 Moritz Mühlenhoff wrote: > On Mon, Jul 25, 2011 at 09:52:15PM +0200, Francesco Poli wrote: > > Hi all, > > it seems to me that the epoch is missing from the fixed squeeze version > > of krb5-appl in the DSA-2283-1 [1] tracker page [2]. > > Why? It's already there: > > [25 Jul 2011] DSA-2283-1 krb5-appl - programming error > {CVE-2011-1526} > [squeeze] - krb5-appl 1:1.0.1-1.1 Well, it was not there, when I wrote my message! ;-) It seems that Mike Gilbert silently fixed it, without replying to my message. http://anonscm.debian.org/viewvc/secure-testing/data/DSA/list?r1=16985&r2=16987&pathrev=16989 > > > Moreover, the DSA says that sid will be fixed soon, but the tracker > > seems to think that the CVE does not affect sid. > > Thanks, fixed. Thanks to you. Now everything looks fine. -- http://www.inventati.org/frx/frx-gpg-key-transition-2010.txt New GnuPG key, see the transition document! ..................................................... Francesco Poli . GnuPG key fpr == CA01 1147 9CD2 EFDF FB82 3925 3E1C 27E1 1F69 BFFE
Attachment:
pgp9HAXbXdq3v.pgp
Description: PGP signature