Maw back, here is the answer. Sorry again for forgetting the Cc:... Cheers, -- Cyril Brulebois
--- Begin Message ---
- To: Cyril Brulebois <cyril.brulebois@enst-bretagne.fr>
- Cc: debian-release@lists.debian.org
- Subject: Re: Please consider hinting nexuiz 2.2.1-1 [security]
- From: Luk Claes <luk@debian.org>
- Date: Sun, 14 Jan 2007 17:56:20 +0100
- Message-id: <45AA60B4.1060100@debian.org>
- In-reply-to: <20070114161314.GF31300@evy.maisel.enst-bretagne.fr>
- References: <20070114161314.GF31300@evy.maisel.enst-bretagne.fr>
Cyril Brulebois wrote: > Hi, > > nexuiz 2.1-1 (currently in testing) contains some vulnerabilities (bug > #406400): > - client command injection; > - DoS against the server. > > (more details in the bugreport) > > Since this version also provides users with better multiplayer support, > since it is in sid since a month, and since Moritz also stated that its > push into etch looks like a viable situation, I'd like to ask you to > consider letting it enter testing. nexuiz-data would also be needed. Only because it's a game and has been in unstable for more than 20 days without problems as the diff is actually way too big... Cheers Luk -- Luk Claes - http://people.debian.org/~luk - GPG key 1024D/9B7C328D Fingerprint: D5AF 25FB 316B 53BB 08E7 F999 E544 DE07 9B7C 328DAttachment: signature.asc
Description: OpenPGP digital signature
--- End Message ---
Attachment:
pgpp1hICRnb_r.pgp
Description: PGP signature