DSA-2274-1 vs. tracker

To: Debian-security-tracker <debian-security-tracker@lists.debian.org>
Subject: DSA-2274-1 vs. tracker
From: Francesco Poli <invernomuto@paranoici.org>
Date: Sat, 9 Jul 2011 19:30:41 +0200
Message-id: <[🔎] 20110709193041.bb04e43a.invernomuto@paranoici.org>

Hello, it's me, again!

DSA-2274-1 [1] claims that all the referenced CVE ids are fixed in sid
by wireshark/1.2.17-1 .
However, the tracker disagrees on CVE-2011-1957 [2] and CVE-2011-1958
[3], claiming that those vulnerabilities are still unfixed in sid.

Where's the truth?
Please clarify and/or fix the tracker data.

[1] http://lists.debian.org/debian-security-announce/2011/msg00146.html
[2] http://security-tracker.debian.org/tracker/CVE-2011-1957
[3] http://security-tracker.debian.org/tracker/CVE-2011-1958


-- 
 http://www.inventati.org/frx/frx-gpg-key-transition-2010.txt
 New GnuPG key, see the transition document!
..................................................... Francesco Poli .
 GnuPG key fpr == CA01 1147 9CD2 EFDF FB82  3925 3E1C 27E1 1F69 BFFE

Attachment: pgpGb3aX08n4t.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: DSA-2274-1 vs. tracker
  - From: Francesco Poli <invernomuto@paranoici.org>

Prev by Date: Re: DSA-2273-1 vs. tracker
Next by Date: Re: DSA-2273-1 vs. tracker
Previous by thread: Re: DSA-2273-1 vs. tracker
Next by thread: Re: DSA-2274-1 vs. tracker
Index(es):
- Date
- Thread