Re: Status of libhtp and suricata in squeeze

To: Raphael Hertzog <hertzog@debian.org>, Pierre Chifflier <pollux@debian.org>, Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>, debian-lts@lists.debian.org
Subject: Re: Status of libhtp and suricata in squeeze
From: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Date: Tue, 17 Mar 2015 10:37:17 +0100
Message-id: <[🔎] CAOkSjBiqcHnV_zfsJRcOzcj3Dmh+xgqeE8+dGKdLuMnyQwSReg@mail.gmail.com>
In-reply-to: <[🔎] 20150316095957.GA29846@home.ouaza.com>
References: <[🔎] 20150316095957.GA29846@home.ouaza.com>

On 16 March 2015 at 10:59, Raphael Hertzog <hertzog@debian.org> wrote:
> Hello,
>
> Moritz Mühlenhoff told me that you did consider libhtp/suricata
> unusable in wheezy and planned to ask for the removal of the package
> in wheezy. Because of that, the security team ignores the currently
> open CVE against those packages.
> https://security-tracker.debian.org/tracker/source-package/suricata
> https://security-tracker.debian.org/tracker/source-package/libhtp
>
> That said the packages are also in squeeze and they are affected in the
> same way (AFAIK). Are the versions in squeeze also unusable like those
> in wheezy ?
>

This is security software, which needs to stay updated to be useful.
That's the kind of 'usability' we are speaking about.

I believe upstream is no longer supporting 1.x series, which is the
version included in both squeeze and wheezy.

-- 
Arturo Borrero González

Reply to:

Follow-Ups:
- Re: Status of libhtp and suricata in squeeze
  - From: Raphael Hertzog <hertzog@debian.org>

References:
- Status of libhtp and suricata in squeeze
  - From: Raphael Hertzog <hertzog@debian.org>

Prev by Date: Re: Intel Modular server disk controller
Next by Date: Re: Status of libhtp and suricata in squeeze
Previous by thread: Status of libhtp and suricata in squeeze
Next by thread: Re: Status of libhtp and suricata in squeeze
Index(es):
- Date
- Thread