Hi, On 31/07/12 11:40, Moritz Muehlenhoff wrote: > Please see http://seclists.org/fulldisclosure/2012/Jul/348 > > This was assigned CVE-2012-4037 > > Since we're in freeze, please contact upstream for an isolated fix > (or grab it from the 2.60-2.61) and fix this using an backported > patch instead of updating to 2.61.
Thanks for the heads-up. Working on it. > Can you please also check, whether stable is affected? It seems to be affected, but backporting the fix is less trivial. I may need some help for that (especially with the testing). Cheers -- Leo "costela" Antunes [insert a witty retort here] -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
