Right. I was the first to mention "security patches" in this thread, and I was referring to source patches made upstream to he code to fix bugs, CVEs, etc.
Also - just because IBM ports a base version (6.4, 7.6), it doesn't mean that they didn't (or won't later) backport bug fixes (security or otherwise) that were made later in the upstream code. On Fri, Apr 12, 2019 at 12:14 PM Seymour J Metz <[email protected]> wrote: > > Read Timothy Sipples's ply. > > That talks about IBM receiving patches, not distributing them. > > > -- > Shmuel (Seymour J.) Metz > http://mason.gmu.edu/~smetz3 > > ________________________________________ > From: IBM Mainframe Discussion List <[email protected]> on behalf > of Paul Gilmartin <[email protected]> > Sent: Friday, April 12, 2019 1:06 PM > To: [email protected] > Subject: Re: OpenSSH upgrade option > > On Fri, 12 Apr 2019 16:54:08 +0000, Seymour J Metz wrote: > > >Who says IBM patches? > > > Read Timothy Sipples's ply. > > >How could EBCDIC conceivably be relevant? > > > The ssh command performs ASCII<->EBCDIC conversion (for pedants, > 1047<->819). I'd expect that to be IBM-specific. Probably not relevant > to security, but additional code that must be supported in an IBM > instance, or conditionally bypassed if the sources are merged. > > -- gil > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
