Re: CVE-2007-6514 shouldn't apply to the linux-2.6 package

> This needs to be fixed in smbfs. It very likely is already on current > etch, it only needs someone to test it with the Etch kernel. i meant that the tracker should be updated so that the issue is tracked in the correct package(s) -- smbfs instead of linux-2.6. -- To UNSUBSCRIBE, email to [EM

Re: CVE-2007-6514 shouldn't apply to the linux-2.6 package

Michael Gilbert wrote: > according to the CVE description [1], it appears that CVE-2007-6514 > should apply to the apache and/or samba packages. however, according > to the tracker [2], it is tracked as a problem with the kernel. i > think that this should be fixed. This needs to be fixed in smb

CVE-2008-2826 should be listed low-urgency in the tracker

according to the CVE page [1], the flaw described by CVE-2008-2826 at most could be used to cause a denial of service by local users. hence, this should be listed as a low-urgency issue in the tracker. thanks. [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2826 -- To UNSUBSCRIBE, em

CVE-2007-6514 shouldn't apply to the linux-2.6 package

according to the CVE description [1], it appears that CVE-2007-6514 should apply to the apache and/or samba packages. however, according to the tracker [2], it is tracked as a problem with the kernel. i think that this should be fixed. [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6

Re: DSA-1615-1 vs. tracker

Hi Francesco, > I think I've noticed another DSA with tracker inconsistencies. > DSA-1615-1 [1] claims that several CVEs are fixed in xulrunner/1.9.0.1-1 > for sid. On the other hand, most of these CVEs (which are linked from the > DSA tracker page [2]) are not reported as fixed in > xulrunner/1.

DSA-1615-1 vs. tracker

Hello everyone again, I think I've noticed another DSA with tracker inconsistencies. DSA-1615-1 [1] claims that several CVEs are fixed in xulrunner/1.9.0.1-1 for sid. On the other hand, most of these CVEs (which are linked from the DSA tracker page [2]) are not reported as fixed in xulrunner/1.9.0

Re: DSA-1612-1 vs. tracker

On Wed, 23 Jul 2008 02:06:51 +0200 Nico Golde wrote: > Hi Francesco, Hi! > * Francesco Poli <[EMAIL PROTECTED]> [2008-07-23 00:19]: [...] > > Thanks for your efforts in improving Debian security! > > Thanks again for spotting this! You're welcome! :-) Bye. -- http://frx.netsons.org/doc/ind