Re: Xt xterm security hole
Bruce Perens writes:
-> What shared library problems pop up if we go with XFree 3.2 ?
I haven't seen problems with shared libraries, just dependencies:
1) motifnls contains a dependency on xbaseR6 (should be xbase (>=
3.1.2-0, I suppose)
2) xanim (which is in non-free) depends on xlib (should be
3) There's no xaw3D or xaw95 6.1 libs, which means that the athena
replacements get overriden by the new 3.2 libs
The first 2 are only dependency issues, and I believe that 3.2-1
provides xlib which would fix #2. #1 shoould be fixable by simply
fixing that dependency. So the only issue I see is #3, which is
cosmetic, but will probaby annoy people and cause questions.
If we're voting on this, I would say that fixing the libXt buffer
overrun security problem more than offsets #3, although every effort
should be made to correct that if possible.
Larry Daffner | Linux: Unleash the workstation in your PC!
firstname.lastname@example.org / http://web2.airmail.net/vizzie/
The experimenter who does not know what he is looking for will
not understand what he finds. --Claude Bernard
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com