On 27/02/2006 9:28 AM, Steve Langasek wrote:
> On Mon, Feb 27, 2006 at 12:23:35AM +1100, Julien Goodwin wrote:
>> This bug should be able to be closed as fixed in version 0.79.
> 
> No, it shouldn't.  This bug is known to be present in the Debian pam 0.79
> package, which includes a patch from the Debian selinux maintainers which
> does indeed open this (relatively minor) security hole.
> 

Hmm, ok then, but why is it still open several months after being
discovered if we know exactly what the problem is?

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to