On Wed, Jan 04, 2012 at 07:48:27AM +0100, Florian Weimer wrote:
* Adam D. Barratt:
Apologies if I'm missing something, but if the packages are already in
the queue on security-master, wouldn't it be simpler (and possibly more
logical) to release them from there? Hmmm, looking at the
* Philipp Kern:
On Wed, Jan 04, 2012 at 07:48:27AM +0100, Florian Weimer wrote:
* Adam D. Barratt:
Apologies if I'm missing something, but if the packages are already in
the queue on security-master, wouldn't it be simpler (and possibly more
logical) to release them from there? Hmmm,
Philipp Kern pk...@debian.org schrieb:
Why is that, given that according to the tracker, lenny isn't even
affected? I'd appreciate a fix for a remote DoS of a network service
through security, to be honest.
For all practical purposes the KDC is local to your trust context.
Cheers,
On Wed, Jan 04, 2012 at 06:37:36PM +0100, Moritz Mühlenhoff wrote:
Philipp Kern pk...@debian.org schrieb:
Why is that, given that according to the tracker, lenny isn't even
affected? I'd appreciate a fix for a remote DoS of a network service
through security, to be honest.
For all
Philipp Kern pk...@debian.org writes:
On Wed, Jan 04, 2012 at 06:37:36PM +0100, Moritz Mühlenhoff wrote:
For all practical purposes the KDC is local to your trust context.
For all practical purposes you also have it open so that your
roadwarriors can get tickets.
Indeed, it's possible that
* Sam Hartman:
Florian Weimer noticed that the krb5 changelog in squeeze was missing a
CVE that was fixed in the patch applied.
He proposes to make a new upload that corrects the changelog so that
people who track security issues from the changelog will find the fix:
Sorry, there seems to be
Hi.
Florian Weimer noticed that the krb5 changelog in squeeze was missing a
CVE that was fixed in the patch applied.
He proposes to make a new upload that corrects the changelog so that
people who track security issues from the changelog will find the fix:
I have updated the changelog to this:
* Sam Hartman:
Florian == Florian Weimer f...@deneb.enyo.de writes:
Florian * Sam Hartman:
Florian Weimer noticed that the krb5 changelog in squeeze was
missing a CVE that was fixed in the patch applied. He proposes
to make a new upload that corrects the changelog so
Florian == Florian Weimer f...@deneb.enyo.de writes:
Florian * Sam Hartman:
Florian Weimer noticed that the krb5 changelog in squeeze was
missing a CVE that was fixed in the patch applied. He proposes
to make a new upload that corrects the changelog so that people
who
* Adam D. Barratt:
On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
* Sam Hartman:
Florian Weimer noticed that the krb5 changelog in squeeze was missing a
CVE that was fixed in the patch applied.
He proposes to make a new upload that corrects the changelog so that
people who
Florian == Florian Weimer f...@deneb.enyo.de writes:
Florian * Adam D. Barratt:
On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
* Sam Hartman:
Florian Weimer noticed that the krb5 changelog in squeeze was
missing a CVE that was fixed in the patch applied.
On Tue, 2012-01-03 at 21:20 +0100, Florian Weimer wrote:
* Adam D. Barratt:
On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
Sorry, there seems to be a slight misunderstanding. The changelog was
indeed incorrect, but even that upload never made it to the archive.
[...]
We
* Adam D. Barratt:
Apologies if I'm missing something, but if the packages are already in
the queue on security-master, wouldn't it be simpler (and possibly more
logical) to release them from there? Hmmm, looking at the tracker,
maybe because they're just DoS issues?
Yes, and we'd have to
13 matches
Mail list logo
