On Sun, 2007-03-18 at 22:04 +0100, Moritz Muehlenhoff wrote: > Hi Thijs, > does this affect Debian's version [of serendipity]?
Hi Moritz, According to upstream this is a non-issue: there's no injection, only error output showing the query. http://blog.s9y.org/archives/164-Serendipity-1.1.2-released.html I propose to consider this CVE as "not relevant" for Debian. Thijs
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
