xpdf-i outdated on sparc?
http://non-us.debian.org/dists/potato-proposed-updates/ only has
xpdf-i 0.90-7 for the i386 architecture. Since this closes a
security hole, shouldn't this update also be available for the other
architectures?
Thanks,
Hein
------- Forwarded Message
Date: Mon, 18 Sep 2000 21:22:28 +1100
From: Hamish Moffatt <hamish@debian.org>
To: Hein Roehrig <hein@acm.org>, 71905@bugs.debian.org
Subject: Re: Bug#71905: xpdf-i: what about xpdf's security holes?
On Mon, Sep 18, 2000 at 12:13:27PM +0200, Hein Roehrig wrote:
> Package: xpdf-i
> Version: 0.90-6
>
> Is xpdf-i subject to the same security hole that made an upgrade of
> xpdf necessary? In either case, an announcement regarding the
> (non-)vulnerability of xpdf-i would be in order, this question also
> arose on bugtraq.
xpdf-i 0.90-6 (in potato) is vulnerable. 0.90-7 has been uploaded
for potato to fix this.
xpdf-i is obselete in woody and no longer required. Please use
xpdf 0.91-1 from main instead, as it contains both decryption
support and a fix for the security problems.
Hamish
- --
Hamish Moffatt VK3SB <hamish@debian.org> <hamish@cloud.net.au>
------- End of Forwarded Message
Reply to: