Re: CVE-2006-2314: debian dovecot package vulnerable. (fwd)

To: debian-release@lists.debian.org
Subject: Re: CVE-2006-2314: debian dovecot package vulnerable. (fwd)
From: "Jaldhar H. Vyas" <jaldhar@debian.org>
Date: Thu, 15 Jun 2006 10:50:19 -0500 (CDT)
Message-id: <[🔎] Pine.LNX.4.58.0606151041440.30269@jaldhar.brainfood.com>
Reply-to: "Jaldhar H. Vyas" <jaldhar@debian.org>

Aargh forgot to send this yesterday.  Please cc me on any replies, I'm not
subscribed to the list.

---------- Forwarded message ----------
A question for the stable release managers.

In bug #369359, Martin Pitt also sent a patch to fix this problem for the
sarge version of Dovecot.  When I mentioned this to the security team,
Joey replied:

> Please talk to the stable release managers.  We don't consider this
> a vulnerability in dovecot but an update required after the security
> update of PostgreSQL which has to go in via proposed-updates.

So how do I proceed?

-- 
Jaldhar H. Vyas <jaldhar@debian.org>
La Salle Debain - http://www.braincells.com/debian/

Reply to:

Follow-Ups:
- Re: CVE-2006-2314: debian dovecot package vulnerable. (fwd)
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: T&S 2 - Die^H^H^HRelease Harder
Next by Date: Re: bits from bts.turmzimmer.net
Previous by thread: Re: bits from bts.turmzimmer.net
Next by thread: Re: CVE-2006-2314: debian dovecot package vulnerable. (fwd)
Index(es):
- Date
- Thread