Hi, On Friday 9 November 2007 23:52, Francesco Poli wrote: > Hi all again! > > DSA 1404-1 [1] claims that gallery2 version 2.1.2-2.0.etch.1 fixes > CVE-2007-4650 for etch. > The DSA page [2] seems to confirm this. > However the CVE page [3] tells a different story: it states that version > 2.1.2-2.0.etch.1 is vulnerable. > Is this a security-tracker internal inconsistency? I've corrected this now, it was due to a misunderstanding by myself of the tracker information. Thijs
Attachment:
pgpHg6MJ2ETvo.pgp
Description: PGP signature