Bug#489756: poppler CVE-2008-2950 in etch

View: New views

5 Messages — Rating Filter: Alert me

	Bug#489756: poppler CVE-2008-2950 in etch by wichert :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention of a fix for stable. Is someone working on a DSA for stable? Wichert. -- Wichert Akkerman <wichert@...> It is simple to make things. http://www.wiggy.net/ It is hard to make things simple. -- To UNSUBSCRIBE, email to debian-bugs-rc-REQUEST@... with a subject of "unsubscribe". Trouble? Contact listmaster@...
	Bug#489756: poppler CVE-2008-2950 in etch by Steve Kemp :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: > I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention > of a fix for stable. Is someone working on a DSA for stable? There isn't one in progress. Tonight there will be a release of an update to handle CVE-2008-1693. I guess that will be the next one. Steve -- -- To UNSUBSCRIBE, email to debian-bugs-rc-REQUEST@... with a subject of "unsubscribe". Trouble? Contact listmaster@...
	Bug#489756: poppler CVE-2008-2950 in etch by wichert :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message Hi Steve, Steve Kemp wrote: On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention of a fix for stable. Is someone working on a DSA for stable? There isn't one in progress. Tonight there will be a release of an update to handle CVE-2008-1693. I guess that will be the next one. thanks for the update. I'll (im)patiently await the CVE-2008-2960 DSA. Wichert. -- Wichert Akkerman wichert@... It is simple to make things. http://www.wiggy.net/ It is hard to make things simple.
	Bug#489756: poppler CVE-2008-2950 in etch by Nico Golde-6 :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message Hi Wichert, * Wichert Akkerman <wichert@...> [2008-07-09 13:12]: > Steve Kemp wrote: > >On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: > > > >>I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention of a > >>fix for stable. Is someone working on a DSA for stable? > >> > > > > There isn't one in progress. Tonight there will be a release of > > an update to handle CVE-2008-1693. I guess that will be the next > > one. > > thanks for the update. I'll (im)patiently await the CVE-2008-2960 DSA. As far as I know white already uploaded a DSA build which just waits to get checked & released. Cheers Nico -- Nico Golde - http://www.ngolde.de - nion@... - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. attachment0 (204 bytes) Download Attachment
	Bug#489756: poppler CVE-2008-2950 in etch by Steffen Joeris :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message Hi Sorry for the delay, but I was relocating to Australia, which unfortunately takes some time :/ > > On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: > >> I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention > >> of a fix for stable. Is someone working on a DSA for stable? > > > > There isn't one in progress. Tonight there will be a release of > > an update to handle CVE-2008-1693. I guess that will be the next > > one. > > thanks for the update. I'll (im)patiently await the CVE-2008-2960 DSA. etch is not affected by this vulnerability, thus I didn't include it in the latest DSA upload. The DTSA was prepared, because it was vulnerable in lenny and the issue was embargoed, thus no fix could be uploaded to unstable yet. I have now marked it in the tracker accordingly. Hope this information helps. Cheers Steffen signature.asc (204 bytes) Download Attachment

	Bug#489756: poppler CVE-2008-2950 in etch by wichert :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention of a fix for stable. Is someone working on a DSA for stable? Wichert. -- Wichert Akkerman <wichert@...> It is simple to make things. http://www.wiggy.net/ It is hard to make things simple. -- To UNSUBSCRIBE, email to debian-bugs-rc-REQUEST@... with a subject of "unsubscribe". Trouble? Contact listmaster@...
	Bug#489756: poppler CVE-2008-2950 in etch by Steve Kemp :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: > I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention > of a fix for stable. Is someone working on a DSA for stable? There isn't one in progress. Tonight there will be a release of an update to handle CVE-2008-1693. I guess that will be the next one. Steve -- -- To UNSUBSCRIBE, email to debian-bugs-rc-REQUEST@... with a subject of "unsubscribe". Trouble? Contact listmaster@...
	Bug#489756: poppler CVE-2008-2950 in etch by wichert :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message Hi Steve, Steve Kemp wrote: On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention of a fix for stable. Is someone working on a DSA for stable? There isn't one in progress. Tonight there will be a release of an update to handle CVE-2008-1693. I guess that will be the next one. thanks for the update. I'll (im)patiently await the CVE-2008-2960 DSA. Wichert. -- Wichert Akkerman wichert@... It is simple to make things. http://www.wiggy.net/ It is hard to make things simple.
	Bug#489756: poppler CVE-2008-2950 in etch by Nico Golde-6 :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message Hi Wichert, * Wichert Akkerman <wichert@...> [2008-07-09 13:12]: > Steve Kemp wrote: > >On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: > > > >>I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention of a > >>fix for stable. Is someone working on a DSA for stable? > >> > > > > There isn't one in progress. Tonight there will be a release of > > an update to handle CVE-2008-1693. I guess that will be the next > > one. > > thanks for the update. I'll (im)patiently await the CVE-2008-2960 DSA. As far as I know white already uploaded a DSA build which just waits to get checked & released. Cheers Nico -- Nico Golde - http://www.ngolde.de - nion@... - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. attachment0 (204 bytes) Download Attachment
	Bug#489756: poppler CVE-2008-2950 in etch by Steffen Joeris :: Rate this Message: Reply (Restricted by the Administrator) \| Reply to Author \| View Threaded \| Show Only this Message Hi Sorry for the delay, but I was relocating to Australia, which unfortunately takes some time :/ > > On Wed Jul 09, 2008 at 12:04:01 +0200, Wichert Akkerman wrote: > >> I see CVE-2008-2960 reported in the BTS as #489756 but I see no mention > >> of a fix for stable. Is someone working on a DSA for stable? > > > > There isn't one in progress. Tonight there will be a release of > > an update to handle CVE-2008-1693. I guess that will be the next > > one. > > thanks for the update. I'll (im)patiently await the CVE-2008-2960 DSA. etch is not affected by this vulnerability, thus I didn't include it in the latest DSA upload. The DTSA was prepared, because it was vulnerable in lenny and the issue was embargoed, thus no fix could be uploaded to unstable yet. I have now marked it in the tracker accordingly. Hope this information helps. Cheers Steffen signature.asc (204 bytes) Download Attachment