Re: CVE-2012-3435: zabbix/testing
On sam., 2012-12-08 at 21:45 +1100, Dmitry Smirnov wrote:
> As far as I'm aware there is no security issues left.
> As for policy issues I hope we can let it retire as long as package
> functionality is not affected.
>
> Please advise if you think there are issues that must be addressed in stable
> and I'll see what I can do.
> Frankly I'm not too confident with packaging prior to version 2 due to lack of
> experience.
Actually there are few CVEs still open (see
https://security-tracker.debian.org/tracker/source-package/zabbix) but
they are marked as unimportant / no-dsa so they should be fixed through
stable-proposed-updates.
Regards,
--
Yves-Alexis Perez
Debian Security
Reply to: