Re: Some TEMP vulnerabilities and the tracker...

To: Debian-security-tracker <debian-security-tracker@lists.debian.org>
Subject: Re: Some TEMP vulnerabilities and the tracker...
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Fri, 12 Mar 2010 18:24:02 -0500
Message-id: <20100312182402.024e1c2d.michael.s.gilbert@gmail.com>
In-reply-to: <20100313000656.b7c65385.frx@firenze.linux.it>
References: <20100313000656.b7c65385.frx@firenze.linux.it>

On Sat, 13 Mar 2010 00:06:56 +0100, Francesco Poli wrote:
> Hi all,
> DSA-2008-1 [1][2] is about CVE-less vulnerabilities reported in
> bug #571151.  The corresponding temporary tracker page may be found by
> using the bug report number [3]: I think this vulnerability should be
> marked as fixed in lenny (security) by typo3-src/4.2.5-1+lenny3, as
> claimed by the DSA.
> 
> A somewhat similar, but not identical, problem may be found in
> DSA-2013-1 [4][5]: there seems to be no temporary tracker page for the
> CVE-less vulnerabilities, hence these problems are not listed in the
> release page for unstable (where egroupware is still present, despite
> being removed from testing).
> If these vulnerabilities are still unfixed in unstable, I think a
> temporary tracker page should be created to track them.
> 
> Please update the tracker, as appropriate.

fixed.  thanks for spotting these.

mike

Reply to:

Follow-Ups:
- Re: Some TEMP vulnerabilities and the tracker...
  - From: Francesco Poli <frx@firenze.linux.it>

References:
- Some TEMP vulnerabilities and the tracker...
  - From: Francesco Poli <frx@firenze.linux.it>

Prev by Date: Some TEMP vulnerabilities and the tracker...
Next by Date: Re: Some TEMP vulnerabilities and the tracker...
Previous by thread: Some TEMP vulnerabilities and the tracker...
Next by thread: Re: Some TEMP vulnerabilities and the tracker...
Index(es):
- Date
- Thread