Re: Fixing CVE-2016-9839 for mapserver in wheezy

To: Sebastiaan Couwenberg <sebastic@xs4all.nl>, debian-lts@lists.debian.org
Cc: Debian GIS Project <debian-gis@lists.debian.org>
Subject: Re: Fixing CVE-2016-9839 for mapserver in wheezy
From: Chris Lamb <lamby@debian.org>
Date: Wed, 07 Dec 2016 09:49:03 +0100
Message-id: <[🔎] 1481100543.3856896.811107057.65AD5FA8@webmail.messagingengine.com>
In-reply-to: <[🔎] 00f01ee6-830e-3d78-71dc-c659927e1abd@xs4all.nl>
References: <[🔎] de73cd23-dc38-8596-f523-d67dfa9b2eb9@xs4all.nl> <[🔎] 1481062935.3702191.810669409.23E0E08F@webmail.messagingengine.com> <[🔎] 00f01ee6-830e-3d78-71dc-c659927e1abd@xs4all.nl>

Sebastiaan Couwenberg wrote:

> Thanks, the fixed version has been uploaded, but the security-tracker
> marks it (6.0.1-3.2+deb7u3) as vulnerable which is incorrect.

The security-tracker is generated from the files in the secure-testing
repository, not from the archive itself.

Can you confirm whether you will be generating a DLA and sending it to
debian-lts-announce or not? No obligation whatsoevr just let me know
either way otherwise I am waiting for your reply to avoid duplicating it
myself.

After announcing it, I will mark it as fixed.

Regards,

-- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

Reply to:

Follow-Ups:
- Re: Fixing CVE-2016-9839 for mapserver in wheezy
  - From: Bas Couwenberg <sebastic@xs4all.nl>

References:
- Fixing CVE-2016-9839 for mapserver in wheezy
  - From: Sebastiaan Couwenberg <sebastic@xs4all.nl>
- Re: Fixing CVE-2016-9839 for mapserver in wheezy
  - From: Chris Lamb <lamby@debian.org>
- Re: Fixing CVE-2016-9839 for mapserver in wheezy
  - From: Sebastiaan Couwenberg <sebastic@xs4all.nl>

Prev by Date: Re: Fixing CVE-2016-9839 for mapserver in wheezy
Next by Date: Re: pyresample 1.2.8
Previous by thread: Re: Fixing CVE-2016-9839 for mapserver in wheezy
Next by thread: Re: Fixing CVE-2016-9839 for mapserver in wheezy
Index(es):
- Date
- Thread