Just guessing: Maybe these packages are dynamically linked against the system libz. Then the following paragraph from the announcement would
I made the same assumption as you did but for some reason I do not feel secure as I have ppp running since Roman mentioned the Kernel update to be announced soon hence was the question.
I agree, with some minor changes. :-)
First off, I'm supposed to forward an email from Harald König, it got
intercepted by the lists server:
--------------
From: Harald Koenig
Just guessing: Maybe these packages are dynamically linked against the system libz. Then the following paragraph from the announcement would apply:
at least XFree86 4.2.0 and older need to be fixed.
it uses it's own zlib for some platforms -- e.g. on Linux
but not for Debian. for details see
http://www.xfree86.org/4.2.0/ERRATA.html
ftp://ftp.xfree86.org/pub/XFree86/4.2.0/fixes/
Harald
--
-------------
In other words: run ldd on your X server and see that it's dynamically
linked.
The thing in the kernel: The ppp code with SLHC isn't the actual thing to
worry about: You'd have to attack that kernel from the other end of your
ptp connection, be it ISDN or modem or pppoe - it's your provider's
hardware. Almost all other occasions in the kernel use compression with
root-supplied data only.
What worries me more is the use of libz in freeswan.
As I said, we're working on it.
Thanks,
Roman.
--
- -
| Roman Drahtmüller