On mer., 2012-11-21 at 09:00 +0200, Niko Tyni wrote: > On Thu, Nov 15, 2012 at 07:48:42AM +0100, Yves-Alexis Perez wrote: > > > ftpmasters, release team: the security team is requesting the removal of > > the pam-rsa package because we were made aware of the above (#693087) > > bug: in some situations, pam_rsa module will cause a segfault in > > xscreensaver, leaving the screen unlocked. > > > > Package seeems to be mostly abandonned upstream (last release in 2007, > > called a “beta release” and no answer from the bug address on the > > upstream webpage) and, although the Debian maintainer seems around, > > there were only NMUs since 2007. > > For the record, I know the upstream author and have confirmed that he > considers pam-rsa abandonware.
Thanks, that's good to know. It'd be wise to indicate that on the website though. Regards, -- Yves-Alexis Perez Debian Security
signature.asc
Description: This is a digitally signed message part
