Bug#692734: unblock: ettercap/0.7.5-4

To: Neil McGovern <neil@halon.org.uk>
Cc: "Barak A. Pearlmutter" <barak@cs.nuim.ie>, 692734@bugs.debian.org, glaubitz@physik.fu-berlin.de
Subject: Bug#692734: unblock: ettercap/0.7.5-4
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Wed, 9 Jan 2013 19:38:00 +0100
Message-id: <20130109183800.GA15467@inutil.org>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 692734@bugs.debian.org
In-reply-to: <20130109152458.GN6894@halon.org.uk>
References: <20130109130303.GJ6894@halon.org.uk> <87mwwixvvq.fsf@cs.nuim.ie> <20130109152458.GN6894@halon.org.uk>

On Wed, Jan 09, 2013 at 03:24:58PM +0000, Neil McGovern wrote:
> On Wed, Jan 09, 2013 at 02:40:25PM +0000, Barak A. Pearlmutter wrote:
> > As I've stated previously, I don't believe that backporting fixes is
> > really feasible.  There are too many, they are mixed with
> > non-security-related modifications, there would be enormous opportunity
> > for error, and ongoing security maintenance would be quite difficult.
> 
> Do you have CVE numbers, BTS references or any further detail? These
> very changes make it not suitable for update when we've been frozen for
> over 6 months.

I'm not aware of any security issues in Ettercap and the release announcement
of 0.7.5 doesn't mention them either.

The 0.7.4 release mentions several buffer overflows, but this version is
already in testing.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Bug#692734: unblock: ettercap/0.7.5-4
  - From: "Barak A. Pearlmutter" <barak@cs.nuim.ie>

References:
- Bug#692734: unblock: ettercap/0.7.5-4
  - From: Neil McGovern <neilm@debian.org>
- Bug#692734: unblock: ettercap/0.7.5-4
  - From: "Barak A. Pearlmutter" <barak@cs.nuim.ie>
- Bug#692734: unblock: ettercap/0.7.5-4
  - From: Neil McGovern <neil@halon.org.uk>

Prev by Date: Bug#693550: unblock: mame/0.146-5
Next by Date: Bug#697794: unblock: nusoap/0.7.3-5
Previous by thread: Bug#692734: unblock: ettercap/0.7.5-4
Next by thread: Bug#692734: unblock: ettercap/0.7.5-4
Index(es):
- Date
- Thread