> > Many vulnerabilities are listed in [1] for kernel-source-2.6.8. > > On the other hand, DSA-1103-1 (which is listed as well) claims > > that all of them but the first one (CVE-2005-2873) are fixed in > > Uhm, they aren't listed? Perhaps the database was out of date. > There is some delay between the DSA, the commit to the > secure-testing SVN repository, and the database update (the > computation takes about 6 minutes at the moment).
The commit was 2006-06-27 14:35:55 +0000, two days before Francesco's mail. Maybe the commit notification mail was delayed (I assume the database update is triggered by the commit mail?). Stefan _______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
