On 03/27/2013 02:30 PM, Adam D. Barratt wrote:
It would be good if that had been discussed /before/ it was uploaded. :(
I'm sorry, Paultag already nagged me for that :). I got a reply from the maintainer to go ahead and forgot to get into touch with the security team :(.
As far as I can tell, the package in unstable is still vulnerable. Is there a plan for getting that fixed?
The version in unstable is 2.4.1 which is not affected according to the upstream bug tracker [1].
Cheers, Adrian > [1] https://jira.mongodb.org/browse/SERVER-9124 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - [email protected] `. `' Freie Universitaet Berlin - [email protected] `- GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
