Quoting Steve Langasek ([EMAIL PROTECTED]): > On Tue, Aug 23, 2005 at 02:20:41PM +0200, Zoran Dzelajlija wrote: > > Quoting Steve Langasek ([EMAIL PROTECTED]): > > > If you can provide me a direct URL for the Ubuntu security patches, I can > > > probably find time to roll an update for the security team if Adam's busy. > > > Patches for XML_RPC, CAN-2005-1921 and CAN-2005-2498 can be found in for > > example > > > ftp://archive.ubuntu.com/ubuntu/pool/universe/p/php4-universe/php4-universe_4.3.10-10ubuntu3.4.diff.gz > > Unfortunately, so can lots of other things; that's not an isolated > security fix, which is what I would need in order to deal with this > quickly.
Eh, did you take a look? There is a nice CAN-xxxx-yyyy file in debian/patches/, if that's not isolated I don't know what is. But this is all irrelevant, as ... > However, Adam is committing the security fixes to the Debian pkg-php svn > tree now, AIUI, so this soon should not be an issue. ... he told me in the other bug report he authored those patches, so I guess he knows what he's doing. ;-) Regards, Zoran -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
