Ken Moffat wrote: > Bruce, I take it you're going to ignore 1485 that I raised yesterday ? > > And still on the subject of security, it appears that fetchmail is now > being maintained from http://fetchmail.berlios.de who have a 6.2.5.2 > release to address CAN-2005-2335. See e.g. > http://www.securityfocus.com/archive/1/406497/30/60/threaded > > No doubt there are other known vulnerabilities in the book, but in the > absence of a list of packages/status I'm *slowly* trying to review them. > I'm sorry this doesn't fit nicely with preparation for a release, but > that is the nature of vulnerabilities.
When I wrote the parent, I was only looking at the 6.1 targeted bugs. 1485 still is marked future. It is also marked P2 but should be P1 due the security issues. This is currently a CMMI package. Does the new version change this? If not, there is no reason why it can't be put into 6.1. -- Bruce -- http://linuxfromscratch.org/mailman/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
