Hi! I was looking http://security-tracker.debian.net/tracker/CVE-2008-5101 and it says that the stable version of optipng is vulnerable to CVE-2008-5101. This should be fixed since the only vulnerable versions are 0.6 and 0.6.1 (stable is 0.5.5).
I can forward upstream email where he says "The versions affected are 0.6 and 0.6.1; version 0.5.5 is fine." just in case you need. Best regards, Nelson
signature.asc
Description: PGP signature
_______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
