On Fri, 28 Sep 2007 08:39:13 pm Ionut Georgescu wrote: > On Thu, 2007-09-27 at 20:12 +0200, Torsten Werner wrote: > > On 9/17/07, Torsten Werner <mail.twerner@googlemail.com> wrote: > > > On 9/16/07, Artur R. Czechowski <arturcz@hell.pl> wrote: > > > > The t1lib 5.1.0 available in Debian (either etch as lenny and sid[1]) > > > > is vulnerable to CVE-2007-4033 security flaw. > > > > > > I have uploaded a new package to unstable that can be easily > > > backported to etch/lenny. I am attaching the output of debdiff. > > > > Do you plan to update the package through security.debian.org? > > > > Cheers, > > Torsten Sorry for the late reply. For testing-security that is no longer necessarry, because it migrated to testing and it was announced in the last testing-security announcement[0]. The rest is up to the stable security team. Cheers Steffen [0]: http://lists.alioth.debian.org/pipermail/secure-testing-announce/2007-September/000060.html
Attachment:
signature.asc
Description: This is a digitally signed message part.