On Wed, 21 Jan 2004 15:53:56 +0000
Colin Watson <email@example.com> wrote:
> On Wed, Jan 21, 2004 at 11:48:13PM +0800, David Palmer. wrote:
> > I've just done a security update.
> > I'm a newbie, on a single PC, in a home situation, so for me it
> > doesn't matter so much, but I was wondering why a package like
> > tcpdump, that would have relevance in a large commercial network, is
> > released as part of a stable security update with bugs the like of
> > #227844, #227845, and #227846 against it.
> According to the tags on those bugs, they currently only affect sarge,
> i.e. testing, not stable; and the CVE numbers on the bugs you see match
> those fixed in the security update. Do you have information to
> contradict this?
Sorry, probably what it is.
I'm running a mix of stable and sarge, and the bug update at the end didn't specify.
The negative power of assumption.
- From: "David Palmer." <firstname.lastname@example.org>
- Re: tcpdump
- From: Colin Watson <email@example.com>