DSA vs tracker: is CVE-2008-5814 fixed in unstable?

To: debian-security-tracker@lists.debian.org
Subject: DSA vs tracker: is CVE-2008-5814 fixed in unstable?
From: Francesco Poli <frx@firenze.linux.it>
Date: Sat, 9 May 2009 17:31:11 +0200
Message-id: <[🔎] 20090509173111.b381c762.frx@firenze.linux.it>

Hi everyone!

DSA-1789-1 [1] claims that all the mentioned CVEs are fixed in
php5/5.2.9.dfsg.1-1 for sid.
All tracker pages for the mentioned CVEs seem to be consistent, except
for the one for CVE-2008-5814 [2], which claims that sid is still
vulnerable.

[1] http://lists.debian.org/debian-security-announce/2009/msg00100.html
[2] http://security-tracker.debian.net/tracker/CVE-2008-5814

Now the question is: is CVE-2008-5814 really fixed in
php5/5.2.9.dfsg.1-1 ?
If this is case, the tracker seems to be inconsistent.

Please clarify and/or fix the inconsistency.


P.S.: Please Cc: me on replies, as I am not a list subscriber.  Thanks.


-- 
 New location for my website! Update your bookmarks!
 http://www.inventati.org/frx
..................................................... Francesco Poli .
 GnuPG key fpr == C979 F34B 27CE 5CD8 DC12  31B5 78F4 279B DD6D FCF4

Attachment: pgpjwBplvlXfo.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: DSA vs tracker: is CVE-2008-5814 fixed in unstable?
  - From: "Michael S. Gilbert" <michael.s.gilbert@gmail.com>

Prev by Date: Re: [Secure-testing-commits] r11636 - data/CVE
Next by Date: Re: [SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities
Previous by thread: Re: [Secure-testing-commits] r11636 - data/CVE
Next by thread: Re: DSA vs tracker: is CVE-2008-5814 fixed in unstable?
Index(es):
- Date
- Thread