Bug#813878: marked as done (security-tracker: DSA-3464-1 vs. tracker)
Your message dated Sat, 6 Feb 2016 11:16:05 +0100
with message-id <20160206101605.GA4171@eldamar.local>
and subject line Re: Bug#813878: security-tracker: DSA-3464-1 vs. tracker
has caused the Debian Bug report #813878,
regarding security-tracker: DSA-3464-1 vs. tracker
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
813878: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=813878
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: security-tracker
Severity: normal
Hi everyone!
DSA-3464-1 [1] states that several vulnerabilities are fixed in
rails/2:4.2.5.1-1 for sid, but the tracker claims that two of
them [2][3] are still unfixed in sid.
Is the DSA wrong or should the tracker data be updated?
Please clarify, thanks for your time!
[1] https://lists.debian.org/debian-security-announce/2016/msg00034.html
[2] https://security-tracker.debian.org/tracker/CVE-2015-3226
[3] https://security-tracker.debian.org/tracker/CVE-2015-3227
--- End Message ---
--- Begin Message ---
Hi Francesco,
On Sat, Feb 06, 2016 at 10:30:42AM +0100, Francesco Poli (wintermute) wrote:
> Hi everyone!
>
> DSA-3464-1 [1] states that several vulnerabilities are fixed in
> rails/2:4.2.5.1-1 for sid, but the tracker claims that two of
> them [2][3] are still unfixed in sid.
>
> Is the DSA wrong or should the tracker data be updated?
> Please clarify, thanks for your time!
Thanks fixed the tracker information (both were fixed in 4.2.2
upstream).
Regards,
Salvatore
--- End Message ---
Reply to: