Re: [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability

To: Thijs Kinkhorst <kink@squirrelmail.org>
Cc: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
From: Florian Weimer <fw@deneb.enyo.de>
Date: Mon, 09 Jan 2006 16:28:52 +0100
Message-id: <[🔎] 87slrxcte3.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] 43C265E2.4080905@squirrelmail.org> (Thijs Kinkhorst's message of "Mon, 09 Jan 2006 14:32:18 +0100")
References: <E1EvxQN-00066a-70@klecker.debian.org> <[🔎] 43C265E2.4080905@squirrelmail.org>

* Thijs Kinkhorst:

> It's great to hear that unstable will be fixed soon, but why wasn't 
> there a grave bug filed against the package? If for some reason the 
> maintainer misses this DSA, it is lateron unknown that the version in 
> unstable is vulnerable and still needs to be fixed...

Uhm, the testing security database records that it's not been fixed
for unstable (and testing).  There is no need to worry that it might
fall through the cracks.

Reply to:

References:
- Re: [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
  - From: Thijs Kinkhorst <kink@squirrelmail.org>

Prev by Date: Re: [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
Next by Date: Re: [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
Previous by thread: Re: [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability
Next by thread: [notify] Change of List-Membership details
Index(es):
- Date
- Thread