On 26/09/14 1:21 PM, Trent W. Buck wrote:

Douglas, please cite the CVE when discussing vulnerabilities:

https://security-tracker.debian.org/tracker/CVE-2014-7169

Dear Trent, The CVE was in seclists link I quoted, with substantially more detail:

More details, and an http exploit, are in http://seclists.org/oss-sec/2014/q3/650

Cheers, Douglas