Re: Security in sarge

To: debian-release@lists.debian.org
Subject: Re: Security in sarge
From: Steve Langasek <vorlon@debian.org>
Date: Mon, 27 Sep 2004 23:18:47 -0700
Message-id: <20040928061844.GH32175@mauritius.dodds.net>
Mail-followup-to: debian-release@lists.debian.org
In-reply-to: <pan.2004.09.28.06.13.44.779273@voxel.net>
References: <20040926120030.GA838@kyllikki.infodrom.north.de> <20040928004113.GD12464@kitenet.net> <pan.2004.09.28.06.13.44.779273@voxel.net>

On Tue, Sep 28, 2004 at 02:13:45AM -0400, Andres Salomon wrote:
> On Mon, 27 Sep 2004 20:41:13 -0400, Joey Hess wrote:

> > Martin Schulze wrote:
> >> ruby 1.8.1+1.8.2pre1-4 needed, have 1.8.1-8 for DSA-537

> > This is fixed in ruby1.8 in testing; ruby itself is a dependency package.
> > I don't know if ruby1.7 was/is vulnetable, do you?

> Ruby1.7 (ie, ruby-beta) is most definitely vulnerable; both 1.6 and 1.8
> had the problem.  However, ruby-beta should be hinted for removal
> anyways.

Rather, ruby-beta is already removed from testing.

-- 
Steve Langasek
postmodern programmer

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Re: Security in sarge
  - From: Joey Hess <joeyh@debian.org>
- Re: Security in sarge
  - From: Andres Salomon <dilinger@voxel.net>

Prev by Date: Re: Security in sarge
Next by Date: Re: Security in sarge
Previous by thread: Re: Security in sarge
Next by thread: Re: Security in sarge
Index(es):
- Date
- Thread