Hi Salvatore
I started checking the CVEs for php-gettext and I'm not sure I follow
the information for CVE-2016-6175.
Maybe you have more data than I do.
The vulnerability is that a malicous user that have permission to
craft .mo files in the target filesystem could execute any php code on
that s
Hi,
DLA 788-1 claims that CVE-2016-9139 was fixed which looks like an
mistake to me. Is it correct that this should be changed to
CVE-2016-7086 instead in data/CVE/list ?
Regards,
Markus
signature.asc
Description: OpenPGP digital signature
Hi Debian LTS users,
I prepared pdns 3.1-4.1+deb7u3 to be uploaded to wheezy-security soon.
Due to the intrusive patch, some testing by users who actually use pdns
in a production environment would be much appreciated.
You can find the packages at https://people.debian.org/~mejo/wheezy-lts/
Chee
On Thursday, 19 January 2017 20:47:15 CET Stefan Fritsch wrote:
> On Tuesday, 17 January 2017 11:59:17 CET Antoine Beaupré wrote:
> > I would need people to start testing the package at this point, not
> > necessarily in production considering how big the change is, but your
> > comfort level will
