[Secure-testing-team] [Secure-testing-commits] r12595 - in data: CVE DSA
Giuseppe Iuculano
giuseppe at iuculano.it
Fri Aug 14 20:46:49 UTC 2009
Michael S Gilbert ha scritto:
> i don't mean to question the accuracy of this change, but just out of
> curiousity, how did an issue with a cve assigned in august 2007 [0]
> get fixed in may 2007? i understand that that's a short (3 month)
> difference and debian could have been aware ahead of cve assignment.
Because in DSA-1285-1 the security team uploaded a new upstream security
release, 2.0.10-1, and that issue was fixed in 2.1.3 and 2.0.10 (legacy version).
Cheers,
Giuseppe
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20090814/bc681b9f/attachment.pgp>
More information about the Secure-testing-team
mailing list