Bug#609839: Bug#609641: Sudo gid security issue

To: Bdale Garbee <bdale@gag.com>
Cc: 609641@bugs.debian.org, 609839@bugs.debian.org, team@security.debian.org
Subject: Bug#609839: Bug#609641: Sudo gid security issue
From: Thijs Kinkhorst <thijs@debian.org>
Date: Tue, 18 Jan 2011 18:44:19 +0100
Message-id: <[🔎] 201101181844.25421.thijs@debian.org>
Reply-to: Thijs Kinkhorst <thijs@debian.org>, 609839@bugs.debian.org
In-reply-to: <[🔎] 87wrm2mtd6.fsf@gag.com>
References: <ea70b29415963991bdb3edd8efb6dc96.squirrel@wm.kinkhorst.nl> <[🔎] 87wrm2mtd6.fsf@gag.com>

On Tuesday 18 January 2011 10:52:21 Bdale Garbee wrote:
> On Tue, 18 Jan 2011 09:20:21 +0100, "Thijs Kinkhorst" <thijs@debian.org> 
wrote:
> > I see that the security issue in #609641 / CVE-2011-0010 is fixed in sid
> > but not in squeeze (lenny not affected). Would you be able to provide an
> > update via testing-proposed-updates for this? Let me know if you need
> > someone from the security team to do it.
> 
> There is already a pending unblock request to allow 1.7.4p4-6 to enter
> testing, #609839, which would I think be the best solution.

Thanks. Today however the release team responded that they think such unblock 
is not acceptable and a testing-proposed-update is necessary. Are you able to 
work on this?


Thijs

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

Follow-Ups:
- Bug#609839: Bug#609641: Sudo gid security issue
  - From: Bdale Garbee <bdale@gag.com>

References:
- Bug#609839: Bug#609641: Sudo gid security issue
  - From: Bdale Garbee <bdale@gag.com>

Prev by Date: Bug#609915: marked as done (unblock: xpaint xpaint 2.9.1.4-2 (fixes the RC bug #609863))
Next by Date: Re: Bug#594635: upgrade-reports: lenny->squeeze: mysql removal, insserv broken
Previous by thread: Bug#609839: Bug#609641: Sudo gid security issue
Next by thread: Bug#609839: Bug#609641: Sudo gid security issue
Index(es):
- Date
- Thread