Hi Moritz, hi Jaime, On Thu, Sep 20, 2012 at 11:33:39AM -0500, Jaime Frey wrote: > On Sep 20, 2012, at 5:50 AM, Moritz Muehlenhoff <j...@inutil.org> wrote: > > > Package: condor > > Severity: grave > > Tags: security > > Justification: user security hole > > > > Please see here for details: > > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3490 > > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3491 > > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3492 > > https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3493 > > > These security issues have been fixed in the just-released Condor 7.8.4.
Thanks for the notification -- I saw the release -- I'm on it. > Michael, here are the commit hashes in the Condor git repo for the fixes: > CVE-2012-3490: 94e84ce4 > CVE-2012-3491: 1fff5d40 > CVE-2012-3492: 1db67805 > CVE-2012-3493: d2f33972 Perfect! Thanks. > For Debian testing, I believe we want to create a new Condor 7.8.2 > package with just these changes. Can you prepare that? I can offer > whatever assistance you require. I'll see what I can do tonight -- if everything runs smooth, I'll upload in a few hours. If not, I'll come back to you. Thanks again, Michael -- Michael Hanke http://mih.voxindeserto.de -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
