Penny Leach wrote:
> Hey Sean, that would be fantastic. Thanks a lot for being so responsive
> on this bug :)
! :-)
m
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
sean finney wrote:
> okay, thanks for helping with the clarifications. if it was a regression in
> the security update then it's possible that an update could also go through
> via another security update. i'll go ahead and merge it into the etch b
On Thursday 24 May 2007 22:10, Martin Langhoff wrote:
> No - the problem was introduced by Etch+3. There's a security patch that
> supposedly fixes handling of nulls in strip_tags() -- which introduces
> this regression. I think it was the initial patch that the PHP folk put
> together, and then la
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Martin Langhoff wrote:
hey can you stop CCing me on these? I am actually subscribed to the bug :)
- --
Penny Leach | [EMAIL PROTECTED] | +64 21 736 695
Catalyst IT | http://catalyst.net.nz | +64 4 803 2218
GPG 8347 00FC B5BF 6CC0 0FC9 AB90 1875 1
sean finney wrote:
> was the regression introduced by the security upload, or was it just
> generally
> a problem with 5.2.0? as far as i knew it was the latter... ?
No - the problem was introduced by Etch+3. There's a security patch that
supposedly fixes handling of nulls in strip_tags() -- wh
hi martin
On Thursday 24 May 2007 11:31, Martin Langhoff wrote:
> thanks for the update. This means that the regression introduced with
> the security upload is going to stay there for a while (until we get a
> point release of stable)?
was the regression introduced by the security upload, or was
sean finney wrote:
> right. that package is the same the normal etch version, plus a few
> unrelated
> security fixes. so both should be broken, but that one should be a little
> safer :)
>
> anyway, after speaking with the SRM's they've decided that this is an
> acceptable update to stable,
hi penny et al,
On Thursday 24 May 2007 00:54, Penny Leach wrote:
> Hi Sean,
>
> I installed the updated package this morning:
>
> *** 5.2.0-8+etch4 0
> 500 http://security.debian.org etch/updates/main Packages
>
> And it still has the same problem
right. that package is the same th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Sean,
I installed the updated package this morning:
*** 5.2.0-8+etch4 0
500 http://security.debian.org etch/updates/main Packages
And it still has the same problem
I'm attaching the script that I've been testing with (obfuscated, it
9 matches
Mail list logo
