[Secure-testing-commits] r8049 - data/CVE
Thijs Kinkhorst
thijs at debian.org
Mon Jan 28 21:13:10 UTC 2008
Hi Nico,
On Monday 28 January 2008 22:04, nion at alioth.debian.org wrote:
> Log:
> CVE-2007-6611, CVE-2006-6574 fixed in next sarge update
> CVE-2007-6611 (Cross-site scripting (XSS) vulnerability in view.php in
> Mantis before ...) {DSA-1467-1}
> - mantis 1.0.8-4 (low; bug #458377)
> + TODO: r8 [sarge] - mantis 0.19.2-5sarge5
Isn't this superfluous because the inclusion in the stable update is the
direct consequence of the (mentioned) DSA-1467? Or am I missing something?
Thijs
More information about the Secure-testing-commits
mailing list