Re: CVE-2009-3555 not addressed in OpenSSL

2010-09-08 Thread Kurt Roeckx
On Wed, Sep 08, 2010 at 10:20:11AM -0700, Kyle Bader wrote: > Hello Deb-sec! > > I'd like to bring to the attention of the developers and the Debian > community that CVE-2009-3555 has not been completely addressed in > Debian/stable as we are meant to believe here: > > http://security-tracker.deb

CVE-2009-3555 not addressed in OpenSSL

2010-09-08 Thread Kyle Bader
Hello Deb-sec! I'd like to bring to the attention of the developers and the Debian community that CVE-2009-3555 has not been completely addressed in Debian/stable as we are meant to believe here: http://security-tracker.debian.org/tracker/CVE-2009-3555 The apache & nginx fixes paper over the iss

Re: Bastille is not for stable

2010-09-08 Thread naths
On Wed, 2010-09-08 at 09:12 +0200, Davide Mirtillo wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Il 07/09/2010 16:30, naths ha scritto: > > Hi, > > > > Installation of Bastille denied on my lenny/amd64 m/c[ suport upto DB4]. > > However managed to install after modifying debian-ver

Re: Bastille is not for stable

2010-09-08 Thread Davide Mirtillo
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Il 07/09/2010 16:30, naths ha scritto: > Hi, > > Installation of Bastille denied on my lenny/amd64 m/c[ suport upto DB4]. > However managed to install after modifying debian-version [ temporarily] > Few errors are : Syslog has not been configured to s