-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On Fri, Aug 08, 2014 at 09:54:30AM +0200, Tomas Hoger wrote:
On Thu, 7 Aug 2014 21:49:11 -0400 David Cafaro wrote:
> I took a look at Bug 828517
>
>
https://bugzilla.redhat.com/show_bug.cgi?id=828517
>
> And from what I can see this was fixed a while ago in version 3.8.12
> and it's now at 3.8.13 in the repos.
>
> I recommend closing, but will need someone else to take care of it
> until I get access figured out.
Closed. Have you looked at and/or been able to check if 3.6 in EPEL-5
is affected and needs fix (see 828512#c0)?
I just checked EPEL-5[0] and see that the version of rt3 there is 3.6.11. According to
the CVE tracker this CVE only affects versions 3.8.x < 3.8.12 and 4.x < 4.0.6 so it
looks like EPEL-5 is okay.
[0]
https://dl.fedoraproject.org/pub/epel/5/x86_64/repoview/rt3.html
- -- Eric
- --------------------------------------------------
Eric "Sparks" Christensen
Fedora Project
sparks(a)fedoraproject.org - sparks(a)redhat.com
097C 82C3 52DF C64A 50C2 E3A3 8076 ABDE 024B B3D1
- --------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQGcBAEBCgAGBQJT5MkTAAoJEB/kgVGp2CYvNh0MAJVJmBlJ6yklf1Dr4ze752z7
kN/2aK1AplzzcNHaYSWUuFodzRK+q1grrYu0P/EcVyj0qAqklFELvKfDf8PCQxIC
QHA+tB4Bswo5CE92iT85XpY9KhW/fFgsYGPmB3fFJM88WfUbcvouL9W1qLKUNVwC
TdypfOxwqp8ZI/JALl/z2DTLVqK+0ptA6rKST24zcSfKruwptpUBE7s88+1uoyaR
itygJ0ECNQt8lgFbhLLNWy9KVPpIbtcV0DjW1hlpFVqIcx7YS2csSsn/pCTDShjn
BkfeWHtohi6rmGJKbjamWMO604MOUA93X6J0qqIvpilnPvwGveaEN2j5xWkJR1ar
CvOnR3evcLFFkIUvwou9iQg/zlJSlxFJidqsKoh+dAp8Af1A58XBVSjLJKqiNeP7
XY10pclarmr3DzwIsV75nDW7DnfjmTxgmX8sjULXehCOcVBUM3JR5okExlRlra02
I4mgp8CdDd85b1AMPTf7OB3aWgBHaNbTOC/+m82YRA==
=Jn5K
-----END PGP SIGNATURE-----