[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1481-1] New Linux 2.6.18 packages fix several vulnerabilities



Hi Jan,
* Jan Hetges <tran@ms20.net> [2007-12-11 16:23]:
> On Mon, Dec 10, 2007 at 10:51:52PM -0700, dann frazier wrote:
[...] 
> > Package        : linux-2.6
> > Vulnerability  : several
> > Problem-Type   : local/remote
> > Debian-specific: no
> > CVE ID         : CVE-2007-3104 CVE-2007-4997 CVE-2007-5500
> 
> is there a particular reason, holding this back for more than a week?
> tran@apoderado1:~$ uname -a
> Linux apoderado1 2.6.18-5-486 #1 Sat Dec 1 22:29:58 UTC 2007 i686 GNU/Linux

I don't know the backgrounds about this specific DSA but 
please also keep in mind that it had to wait for build 
daemons so you can't assume to get it on 1 Dec and of course 
some testing would be also nice.
Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: pgp3ZiIRrYeel.pgp
Description: PGP signature


Reply to: