On 27/02/2006 9:28 AM, Steve Langasek wrote: > On Mon, Feb 27, 2006 at 12:23:35AM +1100, Julien Goodwin wrote: >> This bug should be able to be closed as fixed in version 0.79. > > No, it shouldn't. This bug is known to be present in the Debian pam 0.79 > package, which includes a patch from the Debian selinux maintainers which > does indeed open this (relatively minor) security hole. >
Hmm, ok then, but why is it still open several months after being discovered if we know exactly what the problem is?
signature.asc
Description: OpenPGP digital signature