Re: Known vulnerabilities left open in Debian?

To: Jan Lühr <jluehr@gmx.net>
Cc: debian-security@lists.debian.org
Subject: Re: Known vulnerabilities left open in Debian?
From: Florian Weimer <fw@deneb.enyo.de>
Date: Mon, 22 Mar 2004 22:19:05 +0100
Message-id: <[🔎] 20040322211905.GA17276@deneb.enyo.de>
In-reply-to: <[🔎] 200403222057.34873.jluehr@gmx.net>
References: <[🔎] Pine.LNX.4.56.0403221847410.3364@capitanata.ca.astro.it> <[🔎] 20040322183037.GI2449@sven.home.hoaxter.de> <[🔎] 200403222057.34873.jluehr@gmx.net>

Jan Lühr wrote:

> > That's the only example I know but that doesn't mean much.
> 
> Cron is another example -

No, it's another example for a package which heavily deviates from
upstream (AFAIK, upstream is defunct) and is now developed by the
GNU/Linux distributions (and each variant has a slightly different
features).  Despite this, the situation with cron is rather good;
its complexity is not so high that it's close to impossible to port back
security bugs.

-- 
Current mail filters: many dial-up/DSL/cable modem hosts, and the
following domains: atlas.cz, bigpond.com, freenet.de, hotmail.com,
libero.it, netscape.net, postino.it, tiscali.co.uk, tiscali.cz,
tiscali.it, voila.fr, wanadoo.fr, yahoo.com.

Reply to:

Follow-Ups:
- Cron - was Known vulnerabilities left open in Debian?
  - From: Russell Coker <russell@coker.com.au>

References:
- Known vulnerabilities left open in Debian?
  - From: Giacomo Mulas <gmulas@ca.astro.it>
- Re: Known vulnerabilities left open in Debian?
  - From: Sven Hoexter <sven@timegate.de>
- Re: Known vulnerabilities left open in Debian?
  - From: Jan Lühr <jluehr@gmx.net>

Prev by Date: Re: Known vulnerabilities left open in Debian?
Next by Date: Re: Known vulnerabilities left open in Debian?
Previous by thread: Re: Known vulnerabilities left open in Debian?
Next by thread: Cron - was Known vulnerabilities left open in Debian?
Index(es):
- Date
- Thread