please excuse this blatant cross-posting, i wouldn't do it if i didn't think it were critical that i do so...
http://www.infodrom.org/~joey/log/?200506142140 say it isn't so! to put this in perspective, i'm currently involved with fixing a remotely exploitable vulnerability, which upstream (and the discoverer of the vulnerability) will be announcing on monday. if it is the case that security uploads are not possible: - what is the status of fixing the problem? - why hasn't there been an official announcement? - i will let upstream know and make unofficial updates available. - debian will look very bad until it is fixed, and deservingly so. sean --
signature.asc
Description: Digital signature
