[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 2480-1] request-tracker3.8 security update


I also came across this issue applying the fix yesterday.  I did resolve
it though by doing an apache restart.


Dominic Hargreaves wrote:
> On Fri, May 25, 2012 at 09:29:44AM +0100, Dominic Hargreaves wrote:
>> On Thu, May 24, 2012 at 07:37:03PM +0200, Moritz Muehlenhoff wrote:
>> > Several vulnerabilities were discovered in Request Tracker, an issue
>> > tracking system:
>> > For the stable distribution (squeeze), this problem has been fixed in
>> > version 3.8.8-7+squeeze2.
>> This fix introduced a regression for deployments using mod_perl;
>> sending outgoing email is broken.
>> Please see <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674522>
>> for more information.
>> If you are using RT in this mode you may wish to hold off on applying
>> the update until this problem is fixed.
> There has also been another regression reported which I have not
> confirmed yet:
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674558

Ben Whyall

Reply to: