On Sun, 04 Dec 2011 12:19:46 +0100 Francesco Poli (wintermute) wrote: [...] > Hi! > It seems to me that the tracker page [1] for DSA-2357-1 [2] is > fairly incomplete. [...] > [1] http://security-tracker.debian.org/tracker/DSA-2357-1 > [2] http://lists.debian.org/debian-security-announce/2011/msg00235.html
The situation has improved significantly since I reported the inconsistency. Thanks a lot to whoever (silently) updated the tracker, if anyone actually did it. Just to nitpick a little, there's a final detail to fix: the DSA says that three vulnerabilities (out of four) are already fixed for stable in evince/2.30.3-2, while only the fourth vulnerability (CVE-2010-2642) is unfixed in evince/2.30.3-2 and fixed in evince/2.30.3-2+squeeze1 . There seems to be no trace of this distinction on the tracker. Please fix this last detail, if possible. Again, thanks for your time. -- http://www.inventati.org/frx/frx-gpg-key-transition-2010.txt New GnuPG key, see the transition document! ..................................................... Francesco Poli . GnuPG key fpr == CA01 1147 9CD2 EFDF FB82 3925 3E1C 27E1 1F69 BFFE
pgp8547pCKEqD.pgp
Description: PGP signature