[Secure-testing-team] Lenny security bug sprint

Thijs Kinkhorst thijs at debian.org
Mon Nov 17 10:35:26 UTC 2008


On Mon, November 17, 2008 06:55, Moritz Muehlenhoff wrote:
> dia / #504251
>  Unfixed, no maintainer reaction, patch available

NMU'd meanwhile, asked for unblock

> egroupware / CVE-2007-3215 Should be fixed by using the system wide
> libphp-mailer, #504283, I remember vaguely that the phpmailer issue is
> only exploitable if certain preconditions are met, it should be checked,
> whether these really apply to egroupware.

Not affected. marked as such but left bug so the embedded copy will be
replaced.

> liquidsoap / CVE-2008-4965
>   Fixed in a DTSA, but doesn't seem to have reached Lenny yet?

Asked release team.


cheers,
Thijs




More information about the Secure-testing-team mailing list