Hi list, -----Ursprüngliche Nachricht----- Von: Alex Levit [mailto:alex@kel-tek.com] Gesendet am: Montag, 5. November 2001 08:24 An: suse-security@suse.com mailto:suse-security@suse.com Cc: marc@suse.de mailto:marc@suse.de Betreff: Re: [suse-security] SuSEfirewall2 v1.9 [ ... ]
Also your'e using the old iptables wich has ftp vulnerabilty in it. Donload an update from SuSE to iptables-1.2.1a-37 or download and compile the latest from netfilter.samba.org
This statement leads me to a question. I'm using 7.1, which shipped with an old iptables-1.1.2. Suse never released an updated RPM for this old iptable release for 7.1 Does the iptables-1.1.2 from 7.1 have this ftp vulnerabilty or not ? Can I use the iptables-1.2.1a-53 from 7.2 with 7.1 ? If the iptables-1.1.2 from 7.1 has this ftp vulnerabilty, why wasn't there ever an update of this package released ? Having a look at netfilter.samba.org I see that meanwhile iptables 1.2.4 is released, and a lot of bugs have been fixed even since 1.2.1a, but no updates are issued in the update tree on ftp.suse.com. Now I'm a little bit worried. Can I leave all untouched, can I use the 1.2.1a from 7.2 or do I have to build my own package ? Who can shed some light over this questions ? TIA