HI Sam, On Thu, Mar 27, 2014 at 03:54:48PM -0400, Sam Hartman wrote: > >>>>> "Salvatore" == Salvatore Bonaccorso <car...@debian.org> writes: > > Salvatore> Hi, > > Salvatore> the following vulnerability was published for freeradius. > > Salvatore> CVE-2014-2015[0]: denial of service in rlm_pap hash > Salvatore> processing > > thanks. > I don't think this is worth a DSA for wheezy. > elI'm looking into packaging 3.x. I'll definitely make sure we have > fixes there and if it's taking a while may upload another NMU for 2.x.
'ack' about the no-dsa part (we had indeed tagged it so already for a while). Opened simply also a bug in BTS to keep track of this issue in the BTS. Thanks Sam, Regards Salvatore
signature.asc
Description: Digital signature
