Re: [SECURITY] [DSA 2958-1] apt security update

Sent from my McKiPad On 12 Jun 2014, at 19:11, Thijs Kinkhorst th...@debian.org wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2958-1 secur...@debian.org

External check

CVE-2014-3491: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run. -- To UNSUBSCRIBE, email to

CVE-2014-3477 fixed in dbus/1.6.8-1+deb7u2

In case the mention of the CVE ID in debian/changelog is not enough for someone to update the security tracker: CVE-2014-3477 is fixed in dbus/1.6.8-1+deb7u2, which was just accepted into proposed-updates. It was also fixed in dbus/1.8.4-1 for testing/unstable. If this change is desired in

Re: CVE-2014-3477 fixed in dbus/1.6.8-1+deb7u2

Hi Simon, On Thu, Jun 12, 2014 at 08:15:24PM +0100, Simon McVittie wrote: In case the mention of the CVE ID in debian/changelog is not enough for someone to update the security tracker: CVE-2014-3477 is fixed in dbus/1.6.8-1+deb7u2, which was just accepted into proposed-updates. It was also