[Secure-testing-team] Re: Please allow gnupg to migrate to testing
Steve Langasek
vorlon at debian.org
Wed Aug 16 16:26:17 UTC 2006
On Wed, Aug 16, 2006 at 02:42:54PM +0200, Frans Pop wrote:
> On Wednesday 16 August 2006 03:01, Alec Berryman wrote:
> > The current version of gnupg in testing is 1.4.3-2; it's vulnerable to
> > CVE-2006-3746 (remote denial of service). This has been fixed in
> > 1.4.5-1, although it's not mentioned in the changelog (CVE was assigned
> > after upload). According to grep-excuses, the propagation of 1.4.5-1
> > is blocked because gnupg is in freeze. Would you please allow this
> > version to reach testing?
> Has already been hinted yesterday.
Still blocked by britney confusion about RC bug counts, though. I've added
another hint to get it in.
Thanks,
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
vorlon at debian.org http://www.debian.org/
More information about the Secure-testing-team
mailing list