severity 454167 important
thanks
Nico Golde wrote:
> Package: sing
> Version: 1.1-15
> Severity: critical
> Tags: security
>
> Hi,
> Please have a look at:
> http://www.securityfocus.com/archive/1/484472
The assertion by the security researcher above is incorrect, both
the packages in Sarge and Etch have a debconf question, which warns
prominently about the dangers of a setuid sing binary and which
defaults to no.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
