Jay Berkenbilt <q...@debian.org> wrote: > Lee Garrett <lgarr...@programmfabrik.de> wrote: > >> Hi Jay, >> >> thanks for going through the effort of checking up on all CVEs and >> packaging it up. >> >> CVE-2012-2088 still affects 3.9.4-5+squeeze5 though. The only other >> vulnerability left is tracked in #688944, which was opened just today. > > Sorry...I'll double check CVE-2012-2088 and see what I messed up on with > that. I'll also take care of 2012-4447 for unstable and stable and will > upload to unstable with urgency high and no other changes so it can go > to testing.
Actually, why do you say 3.9.4-5+squeeze5 is affected by CVE-2012-2088? Is the patch wrong? Oh, I see. I left it out of the changelog. The patch is there though. I'll make sure all patches are listed in the changelog. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
