http://non-us.debian.org/dists/potato-proposed-updates/ only has xpdf-i 0.90-7 for the i386 architecture. Since this closes a security hole, shouldn't this update also be available for the other architectures?
Thanks, Hein ------- Forwarded Message Date: Mon, 18 Sep 2000 21:22:28 +1100 From: Hamish Moffatt <[EMAIL PROTECTED]> To: Hein Roehrig <[EMAIL PROTECTED]>, [EMAIL PROTECTED] Subject: Re: Bug#71905: xpdf-i: what about xpdf's security holes? On Mon, Sep 18, 2000 at 12:13:27PM +0200, Hein Roehrig wrote: > Package: xpdf-i > Version: 0.90-6 > > Is xpdf-i subject to the same security hole that made an upgrade of > xpdf necessary? In either case, an announcement regarding the > (non-)vulnerability of xpdf-i would be in order, this question also > arose on bugtraq. xpdf-i 0.90-6 (in potato) is vulnerable. 0.90-7 has been uploaded for potato to fix this. xpdf-i is obselete in woody and no longer required. Please use xpdf 0.91-1 from main instead, as it contains both decryption support and a fix for the security problems. Hamish - -- Hamish Moffatt VK3SB <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> ------- End of Forwarded Message
