[CC the release team to get an opinion on incorporating bugfixes
from upstream stable/bugfix releases during the freeze]
On Fri, Sep 21, 2012 at 09:11:56AM +0200, Moritz Muehlenhoff wrote:
> On Thu, Sep 20, 2012 at 01:55:52PM -0500, Jaime Frey wrote:
> > The commits were made on the V7_6-branch,
On Thu, Sep 20, 2012 at 01:55:52PM -0500, Jaime Frey wrote:
> The commits were made on the V7_6-branch, then merged into the V7_8-branch.
> We had to manually resolve conflicts during the merge, as the affected code
> had been modified during the 7.7.x series. Thus, there's no commit that can
>
On Sep 20, 2012, at 1:46 PM, Michael Hanke wrote:
> On Thu, Sep 20, 2012 at 11:33:39AM -0500, Jaime Frey wrote:
>> These security issues have been fixed in the just-released Condor 7.8.4.
>>
>> Michael, here are the commit hashes in the Condor git repo for the fixes:
>> CVE-2012-3491: 1fff5d40
>
On Thu, Sep 20, 2012 at 11:33:39AM -0500, Jaime Frey wrote:
> These security issues have been fixed in the just-released Condor 7.8.4.
>
> Michael, here are the commit hashes in the Condor git repo for the fixes:
> CVE-2012-3491: 1fff5d40
> CVE-2012-3493: d2f33972
These two do not apply cleanly a
Hi Moritz, hi Jaime,
On Thu, Sep 20, 2012 at 11:33:39AM -0500, Jaime Frey wrote:
> On Sep 20, 2012, at 5:50 AM, Moritz Muehlenhoff wrote:
>
> > Package: condor
> > Severity: grave
> > Tags: security
> > Justification: user security hole
> >
> > Please see here for details:
> > https://bugzilla.
On Sep 20, 2012, at 5:50 AM, Moritz Muehlenhoff wrote:
> Package: condor
> Severity: grave
> Tags: security
> Justification: user security hole
>
> Please see here for details:
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3490
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3491
Package: condor
Severity: grave
Tags: security
Justification: user security hole
Please see here for details:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3490
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3491
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3492
https://bugzil
7 matches
Mail list logo