[Secure-testing-team] done with the woody CANs
Joey Hess
joeyh at debian.org
Mon Nov 22 17:20:28 UTC 2004
Djoume SALVETTI wrote:
> Le jeudi 11/18/04 Joey Hess <joeyh at debian.org> a écrit :
> > There's still over 200 CVEs to check though, and I'll wait for that
> > and for any remaining followup on the CANs.
>
> I have finish my CVE block but I'm not able to commit (authentication
> failed via svn but works on the website). Alioth seems to have some
> troubles...
Try again..
> > It's amazing that we've turned up CANs from 2002 and 2003 that are not yet
> > fixed in sarge.
>
> And even some not fixed in Woody...
If you know of any in particular, be sure to let the stable security
team know. I haven't been checking myself, though I've seen several that
looked likely to affect woody too.
> BTW, I don't know what to do with bug #178102 about vim. The maintainer
> said on Jan 2003 that a fixed package has already been uploaded to the
> security team but no adivisory nor fixed packages are available yet.
> I have mailed maintainer but didn't receive any response.
If that bug affects sarge, it should be reopened. Have you pinged the
stable security team?
--
see shy jo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20041122/7c3e7de3/attachment.pgp
More information about the Secure-testing-team
mailing list