Re: Bug#412904: openser: CVE-2006-6875 / CVE-2006-6876 still unfixed in Etch

To: Julien BLACHE <jblache@debian.org>
Cc: debian-release@lists.debian.org
Subject: Re: Bug#412904: openser: CVE-2006-6875 / CVE-2006-6876 still unfixed in Etch
From: Steve Langasek <vorlon@debian.org>
Date: Thu, 1 Mar 2007 12:54:38 -0800
Message-id: <[🔎] 20070301205436.GB16555@mauritius.dodds.net>
Mail-followup-to: Julien BLACHE <jblache@debian.org>, debian-release@lists.debian.org
In-reply-to: <[🔎] 87ps7txrwh.fsf@sonic.technologeek.org>
References: <20070228205408.4636.4259.reportbug@localhost.localdomain> <87mz2ynfxj.fsf@sonic.technologeek.org> <45E5FA64.7050909@debian.org> <[🔎] 87ps7txrwh.fsf@sonic.technologeek.org>

On Thu, Mar 01, 2007 at 09:57:34AM +0100, Julien BLACHE wrote:

> >>> While these two vulnerabilities have been fixed in sid in 1.1.1, they
> >>> still affect Etch:

> >> OpenSER 1.1.1 is a bugfix-only release, so I am again requesting an
> >> unblock for openser 1.1.1-1, in light of those two CVEs.

> > We can continue this game, though it won't bring us anywhere...

> > 116 files changed, 4498 insertions(+), 3113 deletions(-)

> There are indeed a lot of bug fixes; there's a reason why I'm asking
> for the unblock, you know.

On terms contrary to the release team's freeze guidelines, which exist for a
reason.

-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
vorlon@debian.org                                   http://www.debian.org/

Reply to:

References:
- Re: Bug#412904: openser: CVE-2006-6875 / CVE-2006-6876 still unfixed in Etch
  - From: Julien BLACHE <jblache@debian.org>

Prev by Date: Please unblock glibc_2.3.6.ds1-13
Next by Date: Please unblock gallery2 2.1.2-2
Previous by thread: Re: Bug#412904: openser: CVE-2006-6875 / CVE-2006-6876 still unfixed in Etch
Next by thread: Re: Bug#412904: openser: CVE-2006-6875 / CVE-2006-6876 still unfixed in Etch
Index(es):
- Date
- Thread