On Fri, 06 Feb 2015 17:04:40 +0100, Salvatore Bonaccorso wrote: > the following vulnerability was published for libmp3-info-perl. > > CVE-2013-6499[0]: > loading a module relative to the cwd > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry. > > For further information see: > > [0] https://security-tracker.debian.org/tracker/CVE-2013-6499 > [1] https://bugzilla.redhat.com/show_bug.cgi?id=1018805
FWIW, the bug is closed in Red Hat Bugzilla mentioned above as "bogus". Cheers, gregor -- .''`. Homepage: http://info.comodo.priv.at/ - OpenPGP key 0xBB3A68018649AA06 : :' : Debian GNU/Linux user, admin, and developer - https://www.debian.org/ `. `' Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe `- NP: Jerry Lee Lewis: Great Balls Of Fire
signature.asc
Description: Digital Signature
