Re: Fixes for RT 3.x issue CVE-2011-0009

To: Dominic Hargreaves <dom@earth.li>
Cc: debian-release@lists.debian.org, pkg-request-tracker-maintainers@lists.alioth.debian.org
Subject: Re: Fixes for RT 3.x issue CVE-2011-0009
From: Julien Cristau <jcristau@debian.org>
Date: Thu, 10 Feb 2011 18:55:30 +0100
Message-id: <[🔎] 20110210175530.GX20496@radis.liafa.jussieu.fr>
In-reply-to: <20110120164727.GI4826@urchin.earth.li>
References: <20101228175539.GH4826@urchin.earth.li> <201101121432.47568.geissert@debian.org> <20110115130813.GF4826@urchin.earth.li> <201101170142.18596.geissert@debian.org> <20110118225058.GQ4826@urchin.earth.li> <20110120082852.GW4826@urchin.earth.li> <e003a26888f2c529a3230b25b554f32a.squirrel@wm.kinkhorst.nl> <20110120111031.GD4826@urchin.earth.li> <20110120113923.GO30701@radis.liafa.jussieu.fr> <20110120164727.GI4826@urchin.earth.li>

On Thu, Jan 20, 2011 at 16:47:27 +0000, Dominic Hargreaves wrote:

> On Thu, Jan 20, 2011 at 12:39:23PM +0100, Julien Cristau wrote:
> > On Thu, Jan 20, 2011 at 11:10:31 +0000, Dominic Hargreaves wrote:
> > 
> > > SRM, could you advise on whether this can be included in Saturday's
> > > point release?
> > > 
> > The cutoff for this was on monday.  So no.
> 
> Thanks for confirming; as I thought. I'm still discussing with the
> security team about the best route to updating this, but from your
> point of view would the changes be okay for the point release after
> next (ie can I upload this to stable if needed)?
> 
Sorry I didn't get back to this until now.  In the mean time I see this
was fixed through security in 3.6.7-5+lenny5, and will be part of the
next lenny point release.  Thanks for your work.

Cheers,
Julien

Attachment: signature.asc
Description: Digital signature

Reply to:

Prev by Date: Re: Uploading linux-2.6 2.6.37-1 to unstable
Next by Date: Bug#612819: pu: package libapache-mod-jk/1.2.30-1
Previous by thread: gdal 1.7 transition
Next by thread: Bug#612819: pu: package libapache-mod-jk/1.2.30-1
Index(es):
- Date
- Thread