On Sun, 2010-09-05 at 15:36 +0200, sils wrote: > Attached you will find the fixes for mantis: CVE-2010-2574 [0] xss > vulnerability, reported in BTS #595510 [1] yesterday, affecting lenny, > testing and sid packages (all of them). > > I contacted with the security-team about the CVE and I was told to > contact directly with the release team, because the CVE is not critical > and they said it would be nice if the update is made via regular point > contact with your team at first.
Please go ahead with the uploads to stable and unstable, and let us know once the packages have been accepted. > Please note that BTS #595510 [1] regarding this issue, is closed in > 1.1.8+dfsg-6. Then please mention that in the changelog(s). Regards, Adam -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
