Re: Reassurance
On Mon, Oct 21, 2002 at 04:57:52PM -0700, Jeremy C. Reed wrote: Hopefully, the Debian sources are updated. A quick look at http://www.debian.org/security/2002/ does not indicate sendmail/smrsh or groff/pic. We fixed the groff/pic hole roughly forever ago - I'm not sure why it took NetBSD so long to issue an advisory. http://www.debian.org/security/2001/dsa-072 Cheers, -- Colin Watson [EMAIL PROTECTED]
Reassurance
Anyone who is using my packages does not need to be concerned about the recent spate of NetBSD security announcements (all of those issued since version 1.6 was released); none of them have affected code that is in use by any of the packages I have built. Most of them are in userland which is already provided by Debian in other packages, and as such, I do not build them from NetBSD sources. Just to make folks rest easier, if they were worried... -- *** Joel Baker System Administrator - lightbearer.com [EMAIL PROTECTED] http://users.lightbearer.com/lucifer/ pgpXQwhrW0eF2.pgp Description: PGP signature
Re: Reassurance
On Mon, 21 Oct 2002, Joel Baker wrote: Most of them are in userland which is already provided by Debian in other packages, and as such, I do not build them from NetBSD sources. Hopefully, the Debian sources are updated. A quick look at http://www.debian.org/security/2002/ does not indicate sendmail/smrsh or groff/pic. (It also doesn't mention ntalkd, but I believe NetBSD's ntalk is different than Debian's netkit-ntalk.) Jeremy C. Reed ... BSD software, documentation, resources, news... http://bsd.reedmedia.net/