[pkg-mt-om-devel] Bug#774192: Bug#774192: closed by Dominic Hargreaves <dom at earth.li> (Re: Bug#774192: CVE-2014-9057)
Dominic Hargreaves
dom at earth.li
Mon Feb 2 23:57:21 UTC 2015
On Sun, Jan 04, 2015 at 01:36:08PM +0100, Salvatore Bonaccorso wrote:
> Control: reopen -1
>
> Hi Dominic
>
> > "Note this issue only affects Movable Type versions 6.0.6, 5.2.11
> > and 5.18. It does not affect versions 6.0.5, 5.2.10, 5.17 and prior
> > versions."
>
> Netanel Rubin, the discoverer of the issue confirmed to me that the
> information there seem just not correct, since he discovered the issue
> in testing in 5.2.10. Thus reopening the bug.
>
> I don't know if the parameter verification fixes is easily
> backportable to 5.1.4 also (not checked that (yet)). In the light of
> #734303, should movabletype-opensource maybe be removed also from
> unstable?
On Tue, Jan 27, 2015 at 11:59:05AM +0100, Moritz Mühlenhoff wrote:
> Shall we remove it from unstable now?
Hi,
Sorry for the delay in replying to this. Yes, I've just filed a bug
on ftp.debian.org for this.
Cheers,
Dominic.
More information about the pkg-mt-om-devel
mailing list