moodle issues should not show up in the latently vulnerable packages list

To: debian-security-tracker@lists.debian.org
Subject: moodle issues should not show up in the latently vulnerable packages list
From: "Michael Gilbert" <michael.s.gilbert@gmail.com>
Date: Sat, 3 May 2008 20:47:51 -0400
Message-id: <[🔎] 8e2a98be0805031747y761e1326k47c34c0df72349e6@mail.gmail.com>

it appears that the recent moodle issues (CVE-2006-146 and
CVE-2006-147) never affected sid (they were only applicable to
sarge [1]).  however, they are still listed in the latently vulnerable
problems [2].  the last message of bug #349985 [3] says that 'the
bug existed in multiple distributions (for instance, "unstable" and
"stable") and was thus fixed in a separate upload to each
distribution.'  hence, it appears that the issue has been fully
dealt with in all archives, including sid.  please update the
security-tracker data to correctly reflect that this is the case.

thanks for the hard work.

[1] http://security-tracker.debian.net/tracker/DSA-1030-1
[2] http://security-tracker.debian.net/tracker/data/latently-vulnerable
[3] http://bugs.debian.org/349985

Reply to:

Follow-Ups:
- Re: moodle issues should not show up in the latently vulnerable packages list
  - From: "Michael Gilbert" <michael.s.gilbert@gmail.com>

Prev by Date: abiword issue should not show up in the latently vulnerable list
Next by Date: Re: moodle issues should not show up in the latently vulnerable packages list
Previous by thread: Re: abiword issue should not show up in the latently vulnerable list
Next by thread: Re: moodle issues should not show up in the latently vulnerable packages list
Index(es):
- Date
- Thread