On Tuesday 10 December 2002 14:19, Markus Gaugusch wrote:
I asked about this last Tuesday (I think). Roman posted a message (Friday?) that a patch is being worked on atm.
Yeah, I knew there was something, but didn't find it again :(
I'm anxiously awaiting the patch myself ;-)
As for a page with known vulnerabilities: do you mean something like: http://www.suse.com/us/private/support/security/index.html
This only contains announcements. Usually SuSE doesn't write an announcement without fixed packages to announce. What I'm missing is a "pending vulnerabilities" list. According to my suggestion, this list
In every security announcement there is a pending vulnerabilities list (see the openldap announcement under 2) for instance). Well done to SuSE ;-)
would NOT be done by SuSE people, but by us. This would take some work off from them (although very little), but everything would be more transparent.
Markus
it seems the SuSE boys have taken that off our hands already. Thank God :-) Stefan