Re: Python rexec and Bastion flaws

To: debian-python@lists.debian.org, security@debian.org
Subject: Re: Python rexec and Bastion flaws
From: Martin Schulze <joey@infodrom.org>
Date: Sat, 25 Jan 2003 10:20:00 +0100
Message-id: <20030125091959.GY3088@finlandia.Infodrom.North.DE>
In-reply-to: <20030123163526.GA745@treasure>
References: <20030120211015.GD12749@treasure> <20030121064710.GS3088@finlandia.Infodrom.North.DE> <20030123163526.GA745@treasure>

Bastian Kleineidam wrote:
> > > I suggest to disable the above two modules in python2.2 (which is in
> > > woody), even if existing applications can break. What do you think?
> > 
> > I'd rather know about the vulnerability (and maybe doko is able to
> > implement a fix) than to blindly castrate software.  Theo d.R. already
> > taught us that blindly releasing updates are not good.
> 
> Yup, ok. I will see if I can identify packages using rexec or Bastion
> and provide patches for them instead of disabling modules.

Thanks.

Regards,

	Joey

-- 
Ten years and still binary compatible.  -- XFree86

Please always Cc to me when replying to me on the lists.

Reply to:

References:
- Python rexec and Bastion flaws
  - From: Bastian Kleineidam <calvin@debian.org>
- Re: Python rexec and Bastion flaws
  - From: Martin Schulze <joey@infodrom.org>
- Re: Python rexec and Bastion flaws
  - From: Bastian Kleineidam <calvin@debian.org>

Prev by Date: Re: Python rexec and Bastion flaws
Next by Date: Re: Bug#178373: debconf: severity critical
Previous by thread: Re: Python rexec and Bastion flaws
Next by thread: Mentor needed for python-opengl2
Index(es):
- Date
- Thread