* Olaf Kirch; <okir@suse.de> on 14 Oct, 2002 wrote: SuSE Security Announcement: Heartbeat (SuSE-SA:2002:037)
2) pending vulnerabilities, solutions, workarounds: - util-linux - dhcpcd - heimdal - logsurfer - ghostscript 3) standard appendix (further information)
Well in September 30 th SuSE announced SuSE Security Announcement: heimdal (SuSE-SA:2002:034) in which pending vulnerabilities included fetchmail - fetchmail Fetchmail contains remotely exploitable overflows in the mail header parsing functions. In depth discussion of these problems can be found at http://security.e-matters.de/advisories/032002.html. New packages will soon be available on our ftp servers. Now after 14 days (11 work days counting today) there has been no update for fetchmail.rpm it is not available on the ftp.gwdg.de mirror . And in this SA "(SuSE-SA:2002:037)" there is no mention of fetchmail SuSE Security Announcement: hylafax (SuSE-SA:2002:035) dated Oct 4 2002 has also some pendings like glibc ethereal kdelibs and again there is no info about their status. have the fish go shopping or did I fell asleep Thanks -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer http://dinamizm.ath.cx