[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: libxfont1 issues should not show up in the latently vulnerable packages list

Hi Michael,
* Michael Gilbert <michael.s.gilbert@gmail.com> [2008-07-06 17:25]:
> > Looking at the underlying tracker data the problem seems to
> > be that DSA-1466-2 included an upload for libxfont for the
> > above CVE ids while only CVE-2008-0006 was fixed in the
> > update of libxfont.
> so it was a mistake when the fix was uploaded to etch?  can't you
> hand-edit the security tracker data?

Yes I can. Workarounded based on Florians suggestion.

Thanks for the report!
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: pgpFkuGC7cLYr.pgp
Description: PGP signature

Reply to: