Package: libv8 Severity: serious Tags: security Hi,
It was reported that V8 is affected by the predictable hash collisions attack that made its rounds around the net this week. This is tracked at http://security-tracker.debian.org/tracker/CVE-2011-5037 Can you ensure that fixed packages are uploaded to sid as soon as possible, and assert whether a fix for squeeze would be necessary? Also please note that the security tracker has a number of other open issues for libv8. Do you have any more information on the status of those? http://security-tracker.debian.org/tracker/source-package/libv8 Cheers, Thijs
Description: This is a digitally signed message part.