Re: tcpdump

To: debian-devel@lists.debian.org
Subject: Re: tcpdump
From: Colin Watson <cjwatson@debian.org>
Date: Wed, 21 Jan 2004 15:53:56 +0000
Message-id: <[🔎] 20040121155356.GB21581@riva.ucam.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20040121234813.44c286a0.david@weavers-web.org>
References: <[🔎] 20040121234813.44c286a0.david@weavers-web.org>

On Wed, Jan 21, 2004 at 11:48:13PM +0800, David Palmer. wrote:
> I've just done a security update.
> I'm a newbie, on a single PC, in a home situation, so for me it
> doesn't matter so much, but I was wondering why a package like
> tcpdump, that would have relevance in a large commercial network, is
> released as part of a stable security update with bugs the like of
> #227844, #227845, and #227846 against it.

According to the tags on those bugs, they currently only affect sarge,
i.e. testing, not stable; and the CVE numbers on the bugs you see match
those fixed in the security update. Do you have information to
contradict this?

-- 
Colin Watson                                  [cjwatson@flatline.org.uk]

Reply to:

Follow-Ups:
- Re: tcpdump
  - From: "David Palmer." <david@weavers-web.org>

References:
- tcpdump
  - From: "David Palmer." <david@weavers-web.org>

Prev by Date: tcpdump
Next by Date: Bug#228925: ITP: madison-lite - display versions of Debian packages in an archive
Previous by thread: tcpdump
Next by thread: Re: tcpdump
Index(es):
- Date
- Thread