Re: [SECURITY] [DSA 2480-1] request-tracker3.8 security update
Hi
I also came across this issue applying the fix yesterday. I did resolve
it though by doing an apache restart.
Ben
Dominic Hargreaves wrote:
> On Fri, May 25, 2012 at 09:29:44AM +0100, Dominic Hargreaves wrote:
>> On Thu, May 24, 2012 at 07:37:03PM +0200, Moritz Muehlenhoff wrote:
>> > Several vulnerabilities were discovered in Request Tracker, an issue
>> > tracking system:
>>
>> > For the stable distribution (squeeze), this problem has been fixed in
>> > version 3.8.8-7+squeeze2.
>>
>> This fix introduced a regression for deployments using mod_perl;
>> sending outgoing email is broken.
>>
>> Please see <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674522>
>> for more information.
>>
>> If you are using RT in this mode you may wish to hold off on applying
>> the update until this problem is fixed.
>
> There has also been another regression reported which I have not
> confirmed yet:
>
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674558
>
--
Ben Whyall
Reply to: