Re: DSA-134-1
Previously Anthony DeRobertis wrote:
> $VENDOR says it's broken
> $VENDOR won't provide details
> $VENDOR says upgrade two minor releases
> $VENDOR says upgrading doesn't actually fix the problem
> $VENDOR says upgrading will break things
> Woody security update comes out before potato one.
Lovely situation, isn't it?
> That makes for the weirdest DSA I can remember.
Definitely. I really wish we could do more but the complete lack
of more information we have make things difficult. Backporting
OpenSSH 3.3p1 to to potato is also slightly complicated by missing
build dependencies, but we hope to have packages ready sometime
tomorrow.
> PS: With the Apache hole and then this, when was the last time
> you got any sleep, Wichert?
This was my daytime, and most of the work was done by Daniel Jacobowitz.
Wichert.
--
_________________________________________________________________
/wichert@wiggy.net This space intentionally left occupied \
| wichert@deephackmode.org http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0 2805 3CB8 9250 2FA3 BC2D |
--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to:
- References:
- DSA-134-1
- From: Anthony DeRobertis <asd@suespammers.org>