On Mon, Jan 03, 2005 at 12:30:51PM +0100, Hilmar Preusse wrote: > On 02.01.05 Debian Bug Tracking System (owner@bugs.debian.org) wrote: > > Processing commands for control@bugs.debian.org: > > > tags 286984 -sarge > > Bug#286984: tetex-bin: Vulnerable to CAN-2004-1125 > > Tags were: sarge patch security > > Tags removed: sarge > > > > > tags 286984 +woody > > Bug#286984: tetex-bin: Vulnerable to CAN-2004-1125 > > Tags were: patch security > > Tags added: woody > From: Martin Schulze <joey@infodrom.org> > Cc: 286984@bugs.debian.org > Subject: Re: Bug#286984: CAN-2004-1125: Arbitrary code execution in tetex-bin > Date: Fri, 31 Dec 2004 13:19:36 +0100 > Message-ID: <20041231121936.GW29581@finlandia.infodrom.north.de> > Martin again stated that woody is not affected by the vulnerabiltity, > as: > - The code related to the first hunk is not contained in teTeX 1.0.7 > - The second hunk is not part of the CAN. > Can we close now? If you have the word of the security team that woody is not vulnerable, yes. Cheers, -- Steve Langasek postmodern programmer
Attachment:
signature.asc
Description: Digital signature