On Sep 20, 2012, at 5:50 AM, Moritz Muehlenhoff <j...@inutil.org> wrote:
> Package: condor > Severity: grave > Tags: security > Justification: user security hole > > Please see here for details: > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3490 > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3491 > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3492 > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3493 These security issues have been fixed in the just-released Condor 7.8.4. Michael, here are the commit hashes in the Condor git repo for the fixes: CVE-2012-3490: 94e84ce4 CVE-2012-3491: 1fff5d40 CVE-2012-3492: 1db67805 CVE-2012-3493: d2f33972 For Debian testing, I believe we want to create a new Condor 7.8.2 package with just these changes. Can you prepare that? I can offer whatever assistance you require. Thanks and regards, Jaime Frey UW-Madison Condor Team -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org