Bug#386519: [Pkg-sql-ledger-discussion] Re: Bug#386519: sql-ledger: Security vulnerability CVE-2006-4244

Finn-Arne Johansen faj at bzz.no
Tue Sep 12 08:11:59 UTC 2006


Dieter Simader skrev:
> The sessionid is still there but not used anymore.
> 
> If you need more info let me know.

OK, as said - I've tested that the new package installs ok, but I have
not found the time to check how the bug is fixed.

Since I'm under a rather heavy workload now, I doubt that I can make the
time to verify anything else than that the upgrade went ok.
If Raphael understands the patch, I suggest it's uploaded to the
security mirror, and that a DSA is released.


-- 
Finn-Arne Johansen
faj at bzz.no http://bzz.no/
Debian-edu developer and Solution provider
EE2A71C6403A3D191FCDC043006F1215062E6642 062E6642




More information about the Pkg-sql-ledger-discussion mailing list