Sam Hartman <[email protected]> writes: > My recommendation is that this is not worth a DSA or stable fix for > squeeze unless some Debian user comes forward and says that they're > seeing crashes in the wild related to this. > > --Sam
Keep in mind that unmodified client software can trivially trigger this vulnerability. I can do an explicit check of the trigger against the 1.8 branch if you'd like confirmation. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
