Hi Chris,
On 04-01-16 13:20, Chris Lamb wrote:
> cacti (0.8.7g-1+squeeze9+deb6u13) squeeze-lts; urgency=high
> .
>* Correct yet another regression in patch for CVE-2015-8369, introduced in
> 0.8.7g-1+squeeze9+deb6u12. Thanks to Marcel Meckel
> (Closes:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: cacti
Version: 0.8.7g-1+squeeze9+deb6u13
CVE ID : CVE-2015-8369
Debian Bug : 807599
It was discovered that there was a regression in the patch intended to fix
CVE-2015-8369 in the recent upload of cacti
> Apart from your weird continuation of the squeeze version numbers ;),
> thanks a lot for the cacti updates in lts.
Well, once I started for this particular cacti version, I can hardly
obstinately backtrack :)
> To be honest, I would have expected you would have shared your fix somewhere,
>
Package: libvncserver
Version: 0.9.7-2+deb6u2
An issue had been discovered and resolved by the libvncserver upstream
developer Karl Runge addressing thread-safety in libvncserver when
libvncserver is used for handling multiple VNC connections [1].
Unfortunately, it is not
On Mon, 2016-01-04 at 08:32 +0100, Jan Ingvoldstad wrote:
> On 01/02/2016 06:06 PM, Ben Hutchings wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA512
> >
> > Format: 1.8
> > Date: Sat, 02 Jan 2016 03:31:10 +
> > Source: linux-2.6
>
> We're getting a warning about invalid signature
Hi László, hi Ondřej,
On Do 31 Dez 2015 19:01:33 CET, László Böszörményi (GCS) wrote:
On Thu, Dec 31, 2015 at 10:04 AM, Ondřej Surý wrote:
I have a git mirror[1] (git cvsimport) of upstream CVS and right now
it's a tad bit confusing which patches are relevant to those