[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: testing vs. stable update and the tracker



On Mon, 21 Mar 2011 19:09:23 +0100 Francesco Poli wrote:

[...]
> Once again a stable update was issued.
> Once again, there are vulnerabilities in the tracker that show up as
> fixed in squeeze (or squeeze security), and as unfixed in wheezy and/or
> sid, despite the package version is the *same* in the two (or three)
> branches.
[...]

I see that someone has updated the tracker: thanks a lot!   :-)

There are some leftover inconsistencies, though.

The following vulnerabilities show up as fixed in squeeze and unfixed
in wheezy, despite the package version is the *same* in the two
branches:

http://security-tracker.debian.org/tracker/CVE-2011-1108
http://security-tracker.debian.org/tracker/CVE-2011-1186
http://security-tracker.debian.org/tracker/CVE-2011-0064

The following vulnerabilities show up as fixed in squeeze and wheezy,
and as unfixed in sid, despite the package version is the *same* in the
three branches:

http://security-tracker.debian.org/tracker/CVE-2011-0495

Please fix these remaining inconsistencies.

-- 
 http://www.inventati.org/frx/frx-gpg-key-transition-2010.txt
 New GnuPG key, see the transition document!
..................................................... Francesco Poli .
 GnuPG key fpr == CA01 1147 9CD2 EFDF FB82  3925 3E1C 27E1 1F69 BFFE

Attachment: pgpdu4dKrcAkr.pgp
Description: PGP signature


Reply to: