Re: Bug#559801: CVE-2009-3736 local privilege escalation

To: Sebastian Harl <tokkee@debian.org>
Cc: Michael Gilbert <michael.s.gilbert@gmail.com>, 559801@bugs.debian.org, debian-release@lists.debian.org
Subject: Re: Bug#559801: CVE-2009-3736 local privilege escalation
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 03 Jan 2010 17:16:08 +0000
Message-id: <[🔎] 1262538968.12729.9649.camel@kaa.jungle.aubergine.my-net-space.net>
In-reply-to: <20091225191505.GN871@chough.tokkee.org>
References: <20091206235220.bd28d86f.michael.s.gilbert@gmail.com> <20091225191505.GN871@chough.tokkee.org>

On Fri, 2009-12-25 at 20:15 +0100, Sebastian Harl wrote:
> (Cc'ing debian-release for comments about an s-p-u upload [see below for
[...]
> However, I'm not sure if this warrants a s-p-u upload. OTOH, imho, it
> does not really hurt either. In that case, I'd apply the upstream patch
> [1] to the embedded libltdl copy and patch collectd as mentioned above
> (b). Would that be fine for the release team?

That sounds okay, but please could you provide a debdiff against the
stable package?

Regards,

Adam

Reply to:

Prev by Date: Re: update dhcp3 in lenny?
Next by Date: Re: [Pkg-postgresql-public] Dropping postgresql 8.3 for squeeze
Previous by thread: Re: Cyrus-imapd status update
Next by thread: Bug#563546: pu: package dpkg/1.14.28
Index(es):
- Date
- Thread