12 Mar
2002
12 Mar
'02
09:23
Ok, what did I miss?
I just started YOU on a 7.2 box and I see Apache-259 in there, saying:
"Security update: fixing a remotely exploitable overflow in the session handling code."
Were's the sec-announcement for this, or did I miss it? After a search in my suse-sec-annouce folder, the only thing I can find that hints at this is:
The security announcement will be published today. It was planned for yesterday, but libz/zlib went out first. Roman.