On Fri, Jul 27, 2012 at 11:29 AM, Michael Gilbert wrote: > On Fri, Jul 27, 2012 at 11:25 AM, Ghe Rivero wrote: >> http://security-tracker.debian.org/tracker/CVE-2012-3426 >> >> please mark this entry as fixed for keystone 2012.1.1-1 > > Tracker updates need to be checked/verified. Can you provide a link > to information and preferably a commit for this? Nevermind. A minute later this was posted to oss-sec: http://www.openwall.com/lists/oss-security/2012/07/27/4