I demand that Michael S. Gilbert may or may not have written... > On Fri, 10 Apr 2009 18:18:00 +0100 Darren Salt wrote: >> This does not apply to xine-lib. You mean CVE-2009-0698, which is fixed >> in unstable (and should soon be fixed in, at least, stable too; it >> probably applies to oldstable too, but I've not looked yet).
> not that i nor anyone else should trust fedora as infallable, but they do > indicate that they made a patch to xine in their security notice for this > (CVE-2009-0385) issue. did they make a mistake? No; they appear to have acted on what information was available to them. Both advisories are about the same problem, just not in the same software; and the CVE no. in xine-lib's changelog has been corrected ready for the next release. -- | Darren Salt | linux or ds at | nr. Ashington, | Toon | RISC OS, Linux | youmustbejoking,demon,co,uk | Northumberland | Army | + Generate power using sun, wind, water, nuclear. FORGET COAL AND OIL. National security is in your hands - guard it well. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
