tags 428194 pending thanks [Florian Weimer] > It turns out that this is a different bug, albeit a minor one as well.
Well, in any case, we uploaded 1.4.4 yesterday, so I guess I'll retroactively add the CVE-2007-2448 identifier to the changelog in the next upload. I agree that it's a minor issue - how common is it that someone would copy a file from a restricted part of the repository to an unrestricted part, then expect the revision properties of that commit to remain (partially) restricted? So it doesn't seem worth backporting to etch or sarge. Thanks for looking this up.
signature.asc
Description: Digital signature