Folks,
findutils-4.2.22 was released on ftp://alpha.gnu.org yesterday.
http://lists.gnu.org/archive/html/bug-findutils/2005-06/msg00097.html
has the announcement including a description of a security vulnerability
in 4.2.20 related to use of the '-L' option.
http://savannah.gnu.org/bugs/?func=detailitem&item_id=13381 has the
history of the bug.
I'm thinking of waiting for the official release before releasing
LFS-6.1, rather than extracting the patch and updating the book's
instructions.
Regards,
Matt.
--
http://linuxfromscratch.org/mailman/listinfo/lfs-security
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page
