On 10/25/2011 05:58 AM, jdd wrote:
Le 25/10/2011 11:41, Vincent Untz a écrit :
Vulnerabilities do not always come from ports that are open. It can be a PDF file that is mis-interpreted, for instance...
well... and then?
I don't want to be too long, nor hijack a thread. but have real threat be signaled against kde3 (links, please)?
I mean, it's the same as using any distro: there are major bugs that have to be fixed for security (ssh bug, firefox ones...), and usual bugs that may give data loss but we can live with.
for me security is the risk of opening my computer to bad people.
is there a known list of major such security break in kde3? (it's a real question, I hope you can say yes and give me the link)
Will already answered this question about 20 minutes prior to your post: "http://www.kde.org/info/security/ is a start. Nobody cares to systematically correlate bugs found and fixed in KDE 4 with KDE 3 any more though. Some maintainers have mass-closed their KDE 3 bugs. The Trinity bugtracker is mainly concerned with integration issues with recent Kubuntu releaeses. I occasionally get a CVE vs KDE 3 code which I fix, but there must be a lot of stuff getting by, simply due to the high degree of commonality of non-Plasma KDE3 and KDE4 code. " Later, Robert -- Robert Schweikert MAY THE SOURCE BE WITH YOU SUSE-IBM Software Integration Center LINUX Tech Lead rjschwei@suse.com rschweik@ca.ibm.com 781-464-8147 -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org