Package: rpm Severity: important Tags: security Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3378 and links to patches.
Thanks to dpkg the attack vectors to a Debian system are rather limited, so I don't think this warrants a DSA. It could be fixed through a point update, though (see http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable ) Please contact [email protected] if you disgree with the severity. Cheers, Moritz -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
