Hi Steve, * Steve M. Robbins <steve@sumost.ca> [2008-10-03 19:52]: > On Thu, Oct 02, 2008 at 01:43:45PM +0200, Nico Golde wrote: > > an insecure temporary file creation was reported to the mgt some time ago. > > This is Debian bug #496434. > > > > Unfortunately the vulnerability is not important enough to get it fixed via > > regular security update in Debian stable. It does not warrant a DSA. > > > > However it would be nice if this could get fixed via a regular point update[0]. > > Please contact the release team for this. > > Is it worthwhile to upload to stable just before a new release is made? > If so, be my guest. As it's not a big deal and there are a lot of people out there who don't immediately update their systems for good reasons I think yes. Besides that who knows if its just before now or not? ;-P Cheers Nico -- Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
Attachment:
pgpt9B4WCmFik.pgp
Description: PGP signature