Hi Thomas Cc'in Mike Gilbert and Peter Samuelson.
On Tue, Apr 16, 2013 at 06:05:23PM +0200, Thomas Preud'homme wrote: > For #704940 I took the patch from the corresponding CVE entries > (CVE-2013-1845, CVE-2013-1846, CVE-2013-1847, CVE-2013-1849). There is > no patch for CVE-2013-1884 since it doesn't affect the version in > wheezy. For CVE-2013-1884: could you please double check this with Mike Gilbert? He mentioned in IRC that this also affects the older versions and updated the tracker[1]. [1]: https://security-tracker.debian.org/tracker/CVE-2013-1884 Regards, Salvatore -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/20130417043512.GA3678@elende
