fixed 559020 3.6.9-2 thanks On Tue, Dec 01, 2009 at 09:44:33AM +0100, Stefan Hornburg (Racke) wrote: > Package: request-tracker3.6 > Tag: security > Severity: critical > > http://blog.bestpractical.com/2009/11/session-fixation-vulnerability.html > > RT 3.8.6 is not affected.
Already fixed in unstable, packages for stable and oldstable are in the hands of the security team. -- Dominic Hargreaves | http://www.larted.org.uk/~dom/ PGP key 5178E2A5 from the.earth.li (keyserver,web,email) -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
