[pkg-cinnamon] Cinnamon screensaver security issue
Maximiliano Curia
maxy at debian.org
Fri May 16 14:06:07 UTC 2014
¡Hola László!
El 2014-05-15 a las 12:05 +0200, László Böszörményi (GCS) escribió:
> Any plan, ETA of uploading Cinnamon to Sid? There's a local security
> bug in its screensaver, got the CVE-2014-1949 id[1][2]. Upstream
> bugreport[3] reveals that the fix is under progress. As Clement
> Lefebvre noted some days ago, "We fixed something that could relate to
> this today. Please re-test with git-latest, it could potentially fix
> this problem.".
There is no ETA. I'm wondering if it's a good idea to upload
cinnamon-screensaver to unstable at all, it shouldn't be too hard to replace it
with xscreensaver or gnome-screensaver. We could probably delay the upload til
the issue gets fixed.
> It would be nice to upload Cinnamon to Sid for further testing by the
> users. While ironing out any remainder problems, upload the security
> fix as soon as available.
--
"recursividad 95, 154, 156, 201, 224, 293"
-- El Lenguaje de Programacion C, pag. 293 (Kernighan & Ritchie)
Saludos /\/\ /\ >< `/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-cinnamon-team/attachments/20140516/2af24108/attachment.sig>
More information about the pkg-cinnamon-team
mailing list