[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: tcpdump

On Wed, 21 Jan 2004 15:53:56 +0000
Colin Watson <cjwatson@debian.org> wrote:

> On Wed, Jan 21, 2004 at 11:48:13PM +0800, David Palmer. wrote:
> > I've just done a security update.
> > I'm a newbie, on a single PC, in a home situation, so for me it
> > doesn't matter so much, but I was wondering why a package like
> > tcpdump, that would have relevance in a large commercial network, is
> > released as part of a stable security update with bugs the like of
> > #227844, #227845, and #227846 against it.
> According to the tags on those bugs, they currently only affect sarge,
> i.e. testing, not stable; and the CVE numbers on the bugs you see match
> those fixed in the security update. Do you have information to
> contradict this?
Sorry, probably what it is.
I'm running a mix of stable and sarge, and the bug update at the end didn't specify. 
The negative power of assumption.


Reply to: