Mailinglist Archive: opensuse-security (300 mails)
| < Previous | Next > |
Re: [suse-security] Buffer overflow in Cyrus Imapd
- From: Markus Gaugusch <markus@xxxxxxxxxxx>
- Date: Tue, 10 Dec 2002 14:19:42 +0100 (CET)
- Message-id: <Pine.LNX.4.50.0212101416560.4210-100000@xxxxxxxxxxxxxxxxxx>
> I asked about this last Tuesday (I think). Roman posted a message (Friday?)
> that a patch is being worked on atm.
Yeah, I knew there was something, but didn't find it again :(
> As for a page with known vulnerabilities: do you mean something like:
> http://www.suse.com/us/private/support/security/index.html
This only contains announcements. Usually SuSE doesn't write an
announcement without fixed packages to announce. What I'm missing is a
"pending vulnerabilities" list. According to my suggestion, this list
would NOT be done by SuSE people, but by us.
This would take some work off from them (although very little), but
everything would be more transparent.
Markus
--
__________________ /"\
Markus Gaugusch \ / ASCII Ribbon Campaign
markus@xxxxxxxxxxx X Against HTML Mail
/ \
> that a patch is being worked on atm.
Yeah, I knew there was something, but didn't find it again :(
> As for a page with known vulnerabilities: do you mean something like:
> http://www.suse.com/us/private/support/security/index.html
This only contains announcements. Usually SuSE doesn't write an
announcement without fixed packages to announce. What I'm missing is a
"pending vulnerabilities" list. According to my suggestion, this list
would NOT be done by SuSE people, but by us.
This would take some work off from them (although very little), but
everything would be more transparent.
Markus
--
__________________ /"\
Markus Gaugusch \ / ASCII Ribbon Campaign
markus@xxxxxxxxxxx X Against HTML Mail
/ \
| < Previous | Next > |