On 01-04-02 Jan-Hendrik Palic wrote:
> On Sun, Apr 01, 2001 at 12:45:48PM +0200, Martin Schulze wrote:
> >ssh updates 1:1.2.3-9.3 alpha, arm, i386, m68k, powerpc, sparc
> >ssh-askpass-gnome updates 1:1.2.3-9.3 alpha, arm, i386, m68k, powerpc, sparc
> >ssh-askpass-ptk updates 1:1.2.3-9.3 all
> >
> > Security Update (1:1.2.3-9.2)
> >
> > Sanity Update (broken conffile fix, non-security issue)
> >
> > This is non-US.
>
> why not ssh-2.5.1 ?
Because package updates like this won't happen for new release of the
stable dist. So there will only be a security update. I don't know
currently in which documents this is written down, but I think someone
else, will tell you.
> There are big security holes with 1.2.3, so I thought, this should
> added to stable.
Which holes are in 1.2.3-9.3 that are not fixed? I only could think of
the SSH Traffic Analyse Problem, but I would consider that to be so
important, that there the rule for updates to stable should be broken.
Christian
--
Debian Developer (http://www.debian.org)
1024/26CC7853 31E6 A8CA 68FC 284F 7D16 63EC A9E6 67FF 26CC 7853
Attachment:
pgp5ZYTzWK6JV.pgp
Description: PGP signature