On Sat, 14 Jun 2008 13:36:18 +0200 Nico Golde wrote: > Hi Francesco, > * Francesco Poli <frx@firenze.linux.it> [2008-06-14 12:37]: > > I see from the list archive that the CUPS renaming got the attention it > > deserves. Unfortunately, it seems that the security tracker now lists > > several old vulnerabilities as fixed in package cups, but unfixed in > > package cupsys: > [...] > Mhm, maybe the reason is that cupsys was not yet removed > from unstable and currently cupsys and cups are installable > in unstable? I should shut up, since I don't know how this "<removed>" tag is supposed to work with the security tracker, but... even when cupsys is removed from unstable, it will be still present in testing for some time, and in testing-security until deleted (see bug #464045), and in stable until lenny is released, and then in oldstable for one further year... This is why I thought the fixed version information should have been *copied* from cupsys to cups, rather than *moved*. Or am I completely off-track? -- http://frx.netsons.org/doc/index.html#nanodocs The nano-document series is here! ..................................................... Francesco Poli . GnuPG key fpr == C979 F34B 27CE 5CD8 DC12 31B5 78F4 279B DD6D FCF4
Attachment:
pgpyFM2Kr69HO.pgp
Description: PGP signature