registry team mailing list archive

Thread
Date

[Bug 377054] Re: eggdrop/windrop remote crash vulnerability

To: registry@xxxxxxxxxxxxxxxxxxx
From: Jamie Strandboge <jamie@xxxxxxxxxx>
Date: Wed, 07 Jul 2010 13:15:54 -0000
Reply-to: Bug 377054 <377054@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

ACK, though it took me a minute to figure that the patch removed
01_CVE-2007-2807_servmsg.patch to replace it with CVE-2007-2807.patch.
Brian, in the future please either update the existing patch or give
instructions in the bug that '-E' should be used when applying the
debdiff. These changes should also be mentioned in the changedlog-- ie,
that you removed one patch file and are using another or that you
updated an existing patch. Also, please be clear on the origin of the
patch-- I see that it came from Debian Etch, but the changelog does not
mention that and the patch itself does not follow DEP-3 (which is
preferred).

-- 
eggdrop/windrop remote crash vulnerability
https://bugs.launchpad.net/bugs/377054
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for Debian.