[OpenAFS-devel] Re: CVE-2011-0430 and CVE-2011-0431
Atro Tossavainen
atro.tossavainen+openafs@helsinki.fi
Tue, 8 Mar 2011 11:50:54 +0200 (EET)
> > I see that Debian packages have been patched to correct the two CVE
> > (1.4.12.1+dfsg-4).
>
> Why bother with 1.4.12, there is 1.4.14?
Because many Linux distributions, Debian and RH, for example, have a
habit of keeping the major version of the software within a particular
distribution untouched and backporting fixes?
--
Atro Tossavainen (Mr.) / Working for Infinite Mho Oy in 2011
Techno-Amish & UNIX Dinosaur /
+358-40-529-4071, -44-5000-600 / and beyond? who knows
< URL : http : / / www . infinitemho . fi / >