Your message dated Fri, 12 Oct 2007 12:04:36 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Bug#446339: Security issue CVE-2006-5815, please upload the
new upstream release
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: proftpd-dfsg
Version: 1.3.0-19
Severity: grave
Tags: security
Hi,
according to the proftpd home page, version 1.3.0 is affected by a
security issue with CVE id CVE-2006-5815.
Upstream released 1.3.0a to address the security hole, which is suitable
for the stable release.
For unstable, it is probably better to upload 1.3.1, released one week
ago.
Thanks,
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.18-5-xen-amd64 (SMP w/4 CPU cores)
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to it_IT.UTF-8)
Shell: /bin/sh linked to /bin/dash
--- End Message ---
--- Begin Message ---
Hi Frankie,
* 2007-10-12 12:02, Francesco P. Lovergine wrote:
> Did you see that CVE-2006-5815 is closed since 1.3.0-15? Have you
> information against that?
>
> See http://bugs.debian.org/399070 for reference.
Uhm, I missed it somehow. :-(
Thanks for pointing it out, and sorry for the noise.
--
Fabio Tranchitella http://www.kobold.it
Free Software Developer and Consultant http://www.tranchitella.it
_____________________________________________________________________
1024D/7F961564, fpr 5465 6E69 E559 6466 BF3D 9F01 2BF8 EE2B 7F96 1564
--- End Message ---
