libxfont1 issues should not show up in the latently vulnerable packages list
it appears that the recent libxfont1 issues (CVE-2007-5760,
CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, and CVE-2007-6429) never
affected sid (they were applicable only to sarge and etch [1]).
however, they are still listed in the latently vulnerable problems
[2]. please update the security-tracker data to correctly reflect
that these issues do not exist in sid.
thanks for the hard work.
[1] http://security-tracker.debian.net/tracker/DSA-1466-2
[2] http://security-tracker.debian.net/tracker/CVE-2007-5760
p.s. this is a duplicate message since i accidentally sent the last
message without a subject. hopefully this reduces any confusion. i
appologize.
Reply to: