On Sun, 2010-09-05 at 15:36 +0200, sils wrote: > Attached you will find the fixes for mantis: CVE-2010-2574 [0] xss > vulnerability, reported in BTS #595510 [1] yesterday, affecting lenny, > testing and sid packages (all of them). > > I contacted with the security-team about the CVE and I was told to > contact directly with the release team, because the CVE is not critical > and they said it would be nice if the update is made via regular point > contact with your team at first.
Please go ahead with the uploads to stable and unstable, and let us know once the packages have been accepted. > Please note that BTS #595510 [1] regarding this issue, is closed in > 1.1.8+dfsg-6. Then please mention that in the changelog(s). Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1283699621.32691.146.ca...@kaa.jungle.aubergine.my-net-space.net
