Re: CVE-2006-2314: debian dovecot package vulnerable. (fwd)
Aargh forgot to send this yesterday. Please cc me on any replies, I'm not
subscribed to the list.
---------- Forwarded message ----------
A question for the stable release managers.
In bug #369359, Martin Pitt also sent a patch to fix this problem for the
sarge version of Dovecot. When I mentioned this to the security team,
Joey replied:
> Please talk to the stable release managers. We don't consider this
> a vulnerability in dovecot but an update required after the security
> update of PostgreSQL which has to go in via proposed-updates.
So how do I proceed?
--
Jaldhar H. Vyas <jaldhar@debian.org>
La Salle Debain - http://www.braincells.com/debian/
Reply to: