On Wed, Mar 26, 2014 at 02:48:51PM +0100, Ricardo Mones wrote:
> Hi Moritz,
>
> On Wed, Mar 26, 2014 at 02:19:53PM +0100, Moritz Muehlenhoff wrote:
> > Package: claws-mail
> > Severity: important
> > Tags: security
> >
> > Hi,
> > this was assigned CVE-2014-2576:
> > http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=3106
> >
> > In oldstable/stable this is part of src:claws-mail-extra-plugins. This
> > doesn't warrant a DSA, but you could fix it in a point update.
>
> Yep, could be, but I don't foresee upstream fixing this before next
> point release (7.5) next month. Do you know the deadline for submitting
> an updated package?
Usually it gets frozen a week before the point update, i.e. April 19th/20th.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
