On Mon, Apr 8, 2013 at 3:28 AM, Patrick Matthäi wrote: > Am 08.04.2013 04:02, schrieb Michael Gilbert: >> >> package: src:glusterfs >> severity: important >> tag: security >> >> Hi, >> >> redhat published some advisories for glusterfs. After spending a bit >> of time, I wasn't track down patches, but the following link has >> information: >> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5635 >> >> The redhat advisory indicates that the fixes are included in 3.3.0: >> https://rhn.redhat.com/errata/RHSA-2013-0691.html >> >> Best wishes, >> Mike >> > > See: > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698502
So, because it isn't clear to me, do your patches also address the remaining issues as reported by Kurt Seifried as stated in the redhat bug [0], which have the different id CVE-2012-5635 or do they only address CVE-2012-4417? Best wishes, Mike [0] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5635 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
