Comment 1 Sergey Popov 2013-08-23 08:34:29 UTC

s/cvm/cfm throws me:

ERROR, "CVE-2011-4607" is valid CVE format, but CVE was not found.

However, original link gave me 404

mitre database says that this CVE is reserved(unpublished), so i am lost :-/

Comment 2 Agostino Sarubbo 2013-08-23 14:39:18 UTC

(In reply to Sergey Popov from comment #1)
> s/cvm/cfm throws me:
> 
> ERROR, "CVE-2011-4607" is valid CVE format, but CVE was not found.
> 
> However, original link gave me 404
> 
> mitre database says that this CVE is reserved(unpublished), so i am lost :-/

The original link is wrong because there should be "cfm"

The reserved(unpublished) thing is a mitre "fault"

I think that this glsa should be reviewed, because as per http://www.openwall.com/lists/oss-security/2013/08/06/13 the version 0.63 address more CVEs

Comment 3 Sergey Popov 2013-08-24 05:34:22 UTC

Same thing as in bug #482244

@security, my suggestion: fix GLSA xml, no additional publication

Comment 4 Agostino Sarubbo 2013-08-25 18:23:50 UTC

(In reply to Sergey Popov from comment #1)
> ERROR, "CVE-2011-4607" is valid CVE format, but CVE was not found.

this is now fixed.

Comment 5 Chris Reffett (RETIRED) 2013-08-25 22:20:06 UTC

Fixed in CVS.