Ben Hutchings <b...@decadent.org.uk> writes: >> I'll upload it as soon as someone can confirm me that these packages >> actually fix the problem. > > Based on inspection of the original code and patch for -4866 in this > test package, I am confident that this will be fixed.
hm. okay, then I'll upload that package. > Please also include the fix for -4867 (#496612) as it sounds like the > bug could be used for code injection and the change looks low-risk. could you attach a patch there please first? > -4868 apparently doesn't apply to lenny or sid; the original leak might > but it appears to be extremely limited and probably not controllable by > an attacker. > > -4869 is not clearly defined so seems impossible to address. I see. -- Gruesse/greetings, Reinhard Tartler, KeyID 945348A4 -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
