Sorry for my late reply. I had got flu in the last week. The CVE issue was already fixed in 2.0.18, and it has a simple workground so I did'nt considered as so serious.
The latest namazu2 package has some other issue so Christian's NMU is welcome, go ahead please. At Wed, 26 Mar 2008 08:36:45 +0100, Christian Perrier wrote: > > [1 <text/plain; us-ascii (quoted-printable)>] > Quoting Nico Golde ([EMAIL PROTECTED]): > > Package: namazu2 > > Severity: important > > Tags: security > > > > Hi, > > the following CVE (Common Vulnerabilities & Exposures) id was > > published for namazu2. > > > An l10n NMU is under preparation for unstable. Of course, this is not > related to the security issue, at all. However, if someone provides a > patch for the security issue, I could include it in the NMU. I *can't* > review any patch, though. > > Nokubi-san is apparently not very active maintaining namazu2....but I > may be wrong and no NMU is needed. Let's wait for a possible reaction > in this bug report. My l10n NMU intent was just sent yesterday..:-) > > > [2 Digital signature <application/pgp-signature (7bit)>] > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]