On Mon, Nov 29, 2010 at 01:03:31PM +0000, Iain Lane wrote: > tags 605096 + pending > affects 605096 1.2.2-1 > affects 605096 0.10.2-1 > thanks > > Hi, > > On Sat, Nov 27, 2010 at 01:10:55PM +0100, Moritz Muehlenhoff wrote: > >Package: tomboy > >Severity: grave > >Tags: security > > > > > >Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4005 > >for details and a patch. Please fix this for Squeeze with a targeted > >bugfix, not by packaging a full new upstream release. > > Thanks, prepared for sid/squeeze in git. Attached a diff.gz/dsc for > lenny. Is this OK to upload?
The impact doesn't warrant a DSA. Please fix this through a stable point update instead: http://www.debian.org/doc/developers-reference/pkgs.html#upload-stable Thanks Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
