On Sunday 4 May 2008 02:39, Michael Gilbert wrote: > it appears that the recent abiword issue (CVE-2006-4513) was fixed in sid > a while back (see bug #396360 [1]). it doesn't appear that the abiword > maintainer ever sent a message to let the security team know about this. > however, in the thread for that bug, he did say "I believe this bug has > been fixed in sarge, etch, and sid. Thanks for those of you who were > involved." the bug is currently marked as resolved. hence it appears that > the issue is indeed fixed in sid and should be removed from the latently > vulnerable list [2].
Thanks for reporting this. The bugreport is unclear about the exact fixed version, but I've verified that it indeed is fixed at least from the version currently in etch, so that means we're all set with this. Thijs -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
