* Martin Schulze <[EMAIL PROTECTED]>: > Florian Weimer wrote: > > >> (Note that I have yet to test Lorenzo's new package.) > > > > > > Are you in a position to do so? > > > > Sure, but the question is if you want to rely on the results. You > > don't seem to trust my judgement on this matter, for reasons I don't > > know. > > I simply did not understand the problem. Hence, didn't understand > the vulnerability. Hence, didn't understand what would need to be > fixed.
I tried to do my best to explain the problem, but unfortunately that's not enough. If you want I can try again to describe the bug. BTW, the vulnerability is recorder in CVE: CAN-2005-2317. > If you can, please build an updated package, based on the version in > sarge and woody if that's needed as well, and place them on a .debian.org > host. I already have a fixed package. I only need to add the CVE ID. On which host of .debian.org should I upload it? -- lorenzo -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
