Package: netpbm Version: 2:10.0-10 Severity: critical Tags: security patch confirmed
Hi! Over 3 months ago, DSA-904-1 announced that these two vulnerabilities would be fixed in -11, but unstable is still vulnerable to these issues. Please pull the fixes from sarge-security. http://www.debian.org/security/2005/dsa-904 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3632 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3662 Please mention the CVE numbers in the changelog when you fix this. Thank you, Martin -- Martin Pitt http://www.piware.de Ubuntu Developer http://www.ubuntu.com Debian Developer http://www.debian.org In a world without walls and fences, who needs Windows and Gates?
signature.asc
Description: Digital signature