[Evolution] Bug#526409: Bug#526409: CVE-2009-1631: world-readable permissions for the .evolution directory
Yves-Alexis Perez
corsac at debian.org
Tue Aug 4 16:10:17 UTC 2009
On mar, 2009-08-04 at 17:31 +0200, Giuseppe Iuculano wrote:
> Unfortunately the vulnerability described above is not important enough
> to get it fixed via regular security update in Debian stable and oldstable. It
> does not warrant a DSA.
>
> However it would be nice if this could get fixed via a regular point update[1].
> Please contact the release team for this.
Hmhm, not sure how large and applicable the patch against 2.22.3.1
(lenny) is.
>
> If you fix the vulnerability please also make sure to include the
> CVE id in your changelog entry.
Fix is already in for unstable. testing will have it as soon as it's
built on mipsel.
Cheers,
--
Yves-Alexis
More information about the Pkg-evolution-maintainers
mailing list