Hello everybody, according to DSA-2163-1 [1] two vulnerabilities are fixed in sid by python-django/1.2.5-1 On the other hand, the tracker claims that version 1.2.5-1 is vulnerable [2][3]
Is the DSA incorrect or should the tracker data be updated? Could you please clarify? [1] http://lists.debian.org/debian-security-announce/2011/msg00028.html [2] http://security-tracker.debian.org/tracker/CVE-2011-0696 [3] http://security-tracker.debian.org/tracker/CVE-2011-0697 -- http://www.inventati.org/frx/frx-gpg-key-transition-2010.txt New GnuPG key, see the transition document! ..................................................... Francesco Poli . GnuPG key fpr == CA01 1147 9CD2 EFDF FB82 3925 3E1C 27E1 1F69 BFFE
pgpBNh68l7GtF.pgp
Description: PGP signature