Re: DSA-1999-1 vs. tracker

To: Debian-security-tracker <debian-security-tracker@lists.debian.org>
Subject: Re: DSA-1999-1 vs. tracker
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Thu, 18 Feb 2010 22:29:15 -0500
Message-id: <[🔎] 20100218222915.9cedd4d0.michael.s.gilbert@gmail.com>
In-reply-to: <[🔎] 20100219004219.34aa728f.frx@firenze.linux.it>
References: <[🔎] 20100219004219.34aa728f.frx@firenze.linux.it>

On Fri, 19 Feb 2010 00:42:19 +0100 Francesco Poli wrote:

> Hi everybody!
> 
> DSA-1999-1 has just been issued [1] claiming that five vulnerabilities
> have been fixed in xulrunner.
> 
> The DSA states that the five CVEs are fixed in version 1.9.1.8-1 for
> sid and the changelog [2] seems to agree.
> However, the CVE tracker pages [3][4][5][6][7] tell a different story,
> claiming that sid is still vulnerable.
> Which is wrong and which is right?

the info just needed to be entered.  done.

mike

Reply to:

Follow-Ups:
- Re: DSA-1999-1 vs. tracker
  - From: Francesco Poli <frx@firenze.linux.it>

References:
- DSA-1999-1 vs. tracker
  - From: Francesco Poli <frx@firenze.linux.it>

Prev by Date: DSA-2000-1 vs. tracker
Next by Date: Re: DSA-2000-1 vs. tracker
Previous by thread: DSA-1999-1 vs. tracker
Next by thread: Re: DSA-1999-1 vs. tracker
Index(es):
- Date
- Thread