Alec Berryman wrote: > This issue is fixed in 1.0.0-p5. The CVE indicates that sarge's version > is vulnerable, but it does not include a sample exploit. Note that this > issue only occurs when debugging is enabled.
The sarge version (and all other versions) have debugging disabled (compile time option). Therefore, the vulnerability explained in the CVE is not an issue in the Debian package. Regards, -- Mattias Nordstrom -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
