* Nico Golde: >> +CVE-2007-4743 [Incorrect fix for CVE-2007-3999: buffer overflow in RPC >> library] >> + - krb5 <unfixed> (high) >> + - librpcsecgss <unfixed> >> CVE-2007-4731 > > Is there any public information about why exactly this patch > is wrong?
<http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86> I've also put it into the list file. _______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
