Hello, I did a online update of a SuSe 8.0 box last evening. A was really astonished as I saw a new security fixed tcpdump rpm. I was not aware that there was a new security problem with tcpdump. The description was explaining that there are buffer overflows in nfs an ISAKMP packets. I was wondering, did I overlook a advisory ? Now it makes sense, so my qestion: Is it possilbel that SuSe does publish fix-rpm directly after building it to its ftp servers, and that the advisory may be published later on. e.g after all versions are rebuilded ? Regards Zoran Cvetkovic Thomas Biege wrote:
-----BEGIN PGP SIGNED MESSAGE-----
______________________________________________________________________________
SuSE Security Announcement
Package: tcpdump Announcement-ID: SuSE-SA:2003:0015
-- aixigo AG - financial training, research and technology Schloß-Rahe-Straße 15, 52072 Aachen, Germany fon: +49 (0)241 936737-70, fax: +49 (0)241 936737-99 eMail: Zoran.Cvetkovic@aixigo.de, web: http://www.aixigo.de