Package: rpm Severity: important Tags: security Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3378 and links to patches.
Thanks to dpkg the attack vectors to a Debian system are rather limited, so I don't think this warrants a DSA. It could be fixed through a point update, though (see http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable ) Please contact t...@security.debian.org if you disgree with the severity. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
