Mailinglist Archive: opensuse-security (375 mails)

< Previous Next >
RE: [suse-security] Linux/Slapper.worm
  • From: "Alan Rouse" <ARouse@xxxxxxxx>
  • Date: Wed, 18 Sep 2002 09:45:22 -0400
  • Message-id: <382BC0C28F397F4785E7414B8279F5271B537C@xxxxxxxxxxxxxxxxxxxxxxx>
bliss@xxxxxxxxx wrote:
>The SuSE announcement for SSL says it fixes the bug in CA-2002-23.

Well, no it doesn't. Now maybe you think I should ASSUME that's what it
means. But that is not what it says. Here's what it does say:

Cross References: CAN-2002-0656, CAN-2002-0657, CAN-2002-0655,
CERT Advisory CA-2002-23

Nowhere else does "CA-2002-23" appear in the announcement. Now, what
does "Cross References" mean?... Back to guessing.

Now, I have to decide if an email from someone at attbi.com is
authoritative in answering my question... More guessing.

Sorry but these discussions would not happen if things were explicitly
stated instead of implied in these announcements. I'm certainly not the
only one who thinks this.



< Previous Next >
Follow Ups