* Javier Fernández-Sanguino Peña: > On Sun, Jul 10, 2005 at 03:59:43PM +0200, Florian Weimer wrote: >> Is anybody looking at this problem in a systematic manner, or should I >> just file bugs on the more likely candidates for a security update >> (dpkg and zysnc, based on the list above and assuming that 1.1 is >> indeed not affected). > > File bugs just in case, tag them 'security' so that the security team is > aware of them and provide patches, if possible.
Okay, bugs filed for the packages which match the zlib 1.2 signatures: Bug#317966: dump (thanks, Philippe!) Bug#317967: dpkg Bug#317968: zsync
