Fetchmail update rpm
* Olaf Kirch; <okir@suse.de> on 14 Oct, 2002 wrote: SuSE Security Announcement: Heartbeat (SuSE-SA:2002:037)
2) pending vulnerabilities, solutions, workarounds: - util-linux - dhcpcd - heimdal - logsurfer - ghostscript 3) standard appendix (further information)
Well in September 30 th SuSE announced SuSE Security Announcement: heimdal (SuSE-SA:2002:034) in which pending vulnerabilities included fetchmail - fetchmail Fetchmail contains remotely exploitable overflows in the mail header parsing functions. In depth discussion of these problems can be found at http://security.e-matters.de/advisories/032002.html. New packages will soon be available on our ftp servers. Now after 14 days (11 work days counting today) there has been no update for fetchmail.rpm it is not available on the ftp.gwdg.de mirror . And in this SA "(SuSE-SA:2002:037)" there is no mention of fetchmail SuSE Security Announcement: hylafax (SuSE-SA:2002:035) dated Oct 4 2002 has also some pendings like glibc ethereal kdelibs and again there is no info about their status. have the fish go shopping or did I fell asleep Thanks -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer http://dinamizm.ath.cx
On Mon, 14 Okt 2002, Togan Muftuoglu wrote:
* Olaf Kirch; <okir@suse.de> on 14 Oct, 2002 wrote:
SuSE Security Announcement: Heartbeat (SuSE-SA:2002:037)
2) pending vulnerabilities, solutions, workarounds: - util-linux - dhcpcd - heimdal - logsurfer - ghostscript 3) standard appendix (further information)
Well in September 30 th SuSE announced
SuSE Security Announcement: heimdal (SuSE-SA:2002:034) in which pending vulnerabilities included fetchmail
- fetchmail Fetchmail contains remotely exploitable overflows in the mail header parsing functions. In depth discussion of these problems can be found at http://security.e-matters.de/advisories/032002.html. New packages will soon be available on our ftp servers.
Now after 14 days (11 work days counting today) there has been no update for fetchmail.rpm it is not available on the ftp.gwdg.de mirror .
And in this SA "(SuSE-SA:2002:037)" there is no mention of fetchmail
SuSE Security Announcement: hylafax (SuSE-SA:2002:035) dated Oct 4 2002 has also some pendings like glibc ethereal kdelibs and again there is no info about their status.
have the fish go shopping or did I fell asleep
Feature-Request/Wish-List: Why does'nt SuSE publish via their Web-Site http://www.suse.de/de/security/ an overview of "pending vulnerabilities".... This might be an nice feature... Pending Vulnerabilities might also be: (http://cert.uni-stuttgart.de) - gv (?) - apache (?) - php (?) - dns/bind - python [to.be.continued] Greetings, -- Jörg Henner Fon: +49 (7 11) 48 90 83 - 0 ETES - EDV-Systemhaus GbR Fax: +49 (7 11) 48 90 83 - 50 Libanonstrasse 58 A * D-70184 Stuttgart Web: http://www.etes.de ______________________________________ Inflex - eMail Scanning and Protection Queries to: postmaster@etes.de
participants (2)
-
Joerg Henner -
Togan Muftuoglu