Hi, http://security-tracker.debian.net/tracker/CVE-2007-0911 says: lenny 5.2.0-10 vulnerable sid 5.2.0-11 vulnerable However, its bug 410561 and 410995 was done in 5.2.0-9. So it should be closed. -- Regards, Hideki Yamane
* Hideki Yamane:> http://security-tracker.debian.net/tracker/CVE-2007-0911 says: > lenny 5.2.0-10 vulnerable > sid 5.2.0-11 vulnerable > > However, its bug 410561 and 410995 was done in 5.2.0-9. > So it should be closed.Are you sure? 5.2.0 should not contain this bug. The tracker data is known to be incorrect (see the bottom of the page), but 5.2.0-9 isn''t a fixed version, either.