[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: CAN-2004-1018, CAN-2004-1019 fixed in php4 (4:4.3.10-1), no DSA?

Bob Tanner wrote:
> I see CAN-2004-1018, CAN-2004-1019 are fixed in php4 (4:4.3.10-1) which is in 
> unstable.
> Wondering why I haven't seen a DSA for it yet.

CAN-2004-1018 is a rejected CAN. CAN-2004-1019 is marked as reserved in
mitre's database with no other info. Same for all the other CANs fixed
in the new php4 releases, they're all rejected or reserved. Rather strange..

Anyway, I suppose the delay with the stable package has somthing to do
with the advisory being released on Wednesday, and any of these CANs
that are real holes needing to be backported to the old version of php4
in stable.

see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to: