This one time, at band camp, Matthew Woodcraft said: > Do you know whether volatile will provide updates to 0.88.7 to address > the vulnerabilites described at [1] and [2] ? (As 0.88.7 is also the > version in etch I assume that the security team will be producing fixes, > and that it would just be a matter of producing new packages). > > [1] http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=475 > [2] http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=476 Packages fixing these 2 vulnerabilities (and 1 more) have been uploaded to volatile, sarge-security, and testing-proposed-updates as well as unstable. My understanding is that we are just waiting on autobuilders to get enough architectures ready for distribution. -- ----------------------------------------------------------------- | ,''`. Stephen Gran | | : :' : sgran@debian.org | | `. `' Debian user, admin, and developer | | `- http://www.debian.org | -----------------------------------------------------------------
Attachment:
signature.asc
Description: Digital signature