Re: Stable update for python-pgsql (#369250; CVE-2006-2314)

To: Ben Burton <bab@debian.org>
Cc: debian-release@lists.debian.org
Subject: Re: Stable update for python-pgsql (#369250; CVE-2006-2314)
From: Andreas Barth <aba@not.so.argh.org>
Date: Mon, 5 Jun 2006 10:53:18 +0200
Message-id: <[🔎] 20060605085318.GF26876@mails.so.argh.org>
Mail-followup-to: Andreas Barth <aba@not.so.argh.org>, Ben Burton <bab@debian.org>, debian-release@lists.debian.org
In-reply-to: <[🔎] 20060605045016.GA4013@eclipse.debian.net>
References: <[🔎] 20060605045016.GA4013@eclipse.debian.net>

Hi,

* Ben Burton (bab@debian.org) [060605 07:15]:
> The issue is described in bug #369250; essentially it fixes a security
> hole due to bad escaping of quotes in some encodings (CVE-2006-2314).
> [...]
> Is this suitable for uploading to proposed-updates?

Yes, pleae go ahead (assuming that the used patch is the one in
#369250).

BTW, the diff.gz isn't the best way, a debdiff old.dsc new.dsc is more
helpful.


Cheers,
Andi
-- 
  http://home.arcor.de/andreas-barth/

Reply to:

References:
- Stable update for python-pgsql (#369250; CVE-2006-2314)
  - From: Ben Burton <bab@debian.org>

Prev by Date: Re: powerpc64, multiarch vs biarch and etch ...
Next by Date: binNMUs for libsexy transition
Previous by thread: Re: Stable update for python-pgsql (#369250; CVE-2006-2314)
Next by thread: [sarge] Fixing #325971 in gnutls11
Index(es):
- Date
- Thread