DSA-2077-1 vs. tracker

To: Debian-security-tracker <debian-security-tracker@lists.debian.org>
Subject: DSA-2077-1 vs. tracker
From: Francesco Poli <frx@firenze.linux.it>
Date: Thu, 29 Jul 2010 22:42:08 +0200
Message-id: <20100729224208.ec6c85d8.frx@firenze.linux.it>

Hello everybody (again)!

I noticed what seems to be another inconsistency between a DSA and the
tracker data: the tracker pages [1] for CVE-2010-0211 and CVE-2010-0212
(referenced from the tracker page [2] for DSA-2077-1 [3]) lack
something.

The DSA claims that the vulnerabilities have been fixed in version
2.4.23-1 for unstable.
Hence, I would conclude that unstable is fixed, whereas testing is
still vulnerable.

However, the CVE tracker pages [1] claim that both testing and unstable
are undetermined.

Please fix this inconsistency.


[1] http://security-tracker.debian.org/tracker/CVE-2010-0211
    http://security-tracker.debian.org/tracker/CVE-2010-0212
[2] http://security-tracker.debian.org/tracker/DSA-2077-1
[3] http://lists.debian.org/debian-security-announce/2010/msg00122.html


-- 
 http://www.inventati.org/frx/progs/scripts/pdebuild-hooks.html
 Need some pdebuild hook scripts?
..................................................... Francesco Poli .
 GnuPG key fpr == C979 F34B 27CE 5CD8 DC12  31B5 78F4 279B DD6D FCF4

Attachment: pgpxa0wS6d_NP.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: DSA-2077-1 vs. tracker
  - From: Francesco Poli <frx@firenze.linux.it>

Prev by Date: Re: scans in my hosts. (Debian 5.0 and Apache 2.2.9)
Next by Date: undetermined vs todo (was: [Secure-testing-commits] r15066 - data/CVE)
Previous by thread: Re: DSA-2076-1 vs. tracker
Next by thread: Re: DSA-2077-1 vs. tracker
Index(es):
- Date
- Thread