Bug#357561: privilege escalation hole

To: 357561@bugs.debian.org
Cc: ml_debian-security <debian-security@lists.debian.org>
Subject: Bug#357561: privilege escalation hole
From: Daniel Leidert <daniel.leidert@wgdd.de>
Date: Thu, 01 Mar 2007 16:49:38 +0100
Message-id: <[🔎] 1172764178.4828.24.camel@localhost>
Reply-to: Daniel Leidert <daniel.leidert@wgdd.de>, 357561@bugs.debian.org
In-reply-to: <[🔎] 874pp5fwyv.fsf@windlord.stanford.edu>
References: <[🔎] 20070301033058.31705.29391.reportbug@localhost> <[🔎] 874pp5fwyv.fsf@windlord.stanford.edu>

Am Mittwoch, den 28.02.2007, 19:45 -0800 schrieb Russ Allbery:
> Daniel Leidert <daniel.leidert@wgdd.de> writes:
> 
> > Package: apache
> > Followup-For: Bug #357561
> 
> > Why isn't anybody of the official maintainers reacting or commenting on
> > this bug? There are 3(!) completely undocumented downgrades of a bug,
> > that IMHO (from reading) fits the "grave" severity.
> 
> The downgrades aren't undocumented.  Look at the full downgrade messages.

I'm sorry. You are right. I was just taking an overview of the full
texts and expected any comment after the bts-command. I see it now and I
say sorry to Steve Langasek. I was in hurry and annoyed by the fact,
that although this bug is now open for almost a year, there were 3
severity downgrades, but no real reaction. Didn't know that special
treating of terminal exploits.

Regards, Daniel

Reply to:

References:
- Bug#357561: privilege escalation hole
  - From: Daniel Leidert <daniel.leidert@wgdd.de>
- Bug#357561: privilege escalation hole
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Bug#357561: Severity
Next by Date: Bug#357561: privilege escalation hole
Previous by thread: Bug#357561: privilege escalation hole
Next by thread: Bug#357561: privilege escalation hole
Index(es):
- Date
- Thread