Re: [SECURITY] [DSA 2480-1] request-tracker3.8 security update
On Fri, May 25, 2012 at 09:29:44AM +0100, Dominic Hargreaves wrote:
> On Thu, May 24, 2012 at 07:37:03PM +0200, Moritz Muehlenhoff wrote:
> > Several vulnerabilities were discovered in Request Tracker, an issue
> > tracking system:
>
> > For the stable distribution (squeeze), this problem has been fixed in
> > version 3.8.8-7+squeeze2.
>
> This fix introduced a regression for deployments using mod_perl;
> sending outgoing email is broken.
>
> Please see <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674522>
> for more information.
>
> If you are using RT in this mode you may wish to hold off on applying
> the update until this problem is fixed.
There has also been another regression reported which I have not
confirmed yet:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674558
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
Reply to: