[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#606311: Acknowledgement (movabletype-opensource: Unspecified XSS and SQL injection vulnerabilities fixed in 4.35)

On Wed, 2011-01-05 at 22:40 +0000, Dominic Hargreaves wrote:
> On Sun, Dec 12, 2010 at 06:13:12PM +0000, Adam D. Barratt wrote:
> > On Fri, 2010-12-10 at 22:33 +0000, Dominic Hargreaves wrote:
> > > I've pushed the diff to git now:
> > > <http://git.debian.org/?p=pkg-mt-om/movabletype-opensource.git;a=commit;h=66daeefb9288a35e45a0634d5419fb0cf28c8d5f>
[...]
> > > DSA and/or SRM, would this be okay to release as either a DSA or update
> > > to stable?
> > 
> > >From a quick look the diff looks okay, but I'd prefer a definitive
> > answer from the security team before we think about a stable update.
> 
> I've heard nothing from the security team; is this time to think about
> a stable update instead?

Please go ahead.

Regards,

Adam
Reply to: