white at alioth.debian.org
2008-Jul-31 23:28 UTC
[Secure-testing-commits] r9484 - data/DTSA
Author: white
Date: 2008-07-31 23:28:39 +0000 (Thu, 31 Jul 2008)
New Revision: 9484
Modified:
data/DTSA/list
Log:
Release libxslt DTSA
Modified: data/DTSA/list
==================================================================---
data/DTSA/list 2008-07-31 21:14:09 UTC (rev 9483)
+++ data/DTSA/list 2008-07-31 23:28:39 UTC (rev 9484)
@@ -441,3 +441,6 @@
[July 17th, 2008] DTSA-151-1 openldap - denial of service
{CVE-2008-2952}
[lenny] - openldap 2.4.10-2+lenny1
+[August 1st, 2008] DTSA-152-1 libxslt - arbitrary code execution
+ {CVE-2008-2935}
+ [lenny] - libxslt 1.1.24-1+lenny1
Thijs Kinkhorst
2008-Aug-01 07:14 UTC
[Secure-testing-team] propagate fixes to sid automatically?
Hi, On Friday 1 August 2008 01:28, white at alioth.debian.org wrote:> +[August 1st, 2008] DTSA-152-1 libxslt - arbitrary code execution > + {CVE-2008-2935} > + [lenny] - libxslt 1.1.24-1+lenny1In quite some cases the testing and unstable versions of the package are the same. That means that the same issue could trivially be fixed by uploading the exact same version to sid. Wouldn''t it be an idea that if testing == unstable, then dak would automatically propagate the fix to testing-security to unstable aswell? cheers, Thijs -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 481 bytes Desc: not available Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20080801/a17ba8c3/attachment.pgp
Nico Golde
2008-Aug-01 11:20 UTC
[Secure-testing-team] propagate fixes to sid automatically?
Hi Thijs, * Thijs Kinkhorst <thijs at debian.org> [2008-08-01 11:53]:> On Friday 1 August 2008 01:28, white at alioth.debian.org wrote: > > +[August 1st, 2008] DTSA-152-1 libxslt - arbitrary code execution > > + {CVE-2008-2935} > > + [lenny] - libxslt 1.1.24-1+lenny1 > > In quite some cases the testing and unstable versions of the package are the > same. That means that the same issue could trivially be fixed by uploading > the exact same version to sid. Wouldn''t it be an idea that if testing == > unstable, then dak would automatically propagate the fix to testing-security > to unstable aswell?Point added to meeting wiki site :) Cheers Nico -- Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: not available Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20080801/17fd9f8e/attachment.pgp