Robert Woodcock wrote: > On Sat, Nov 25, 2006 at 09:17:54AM -0800, David Liontooth wrote: > >> Package: netdiag >> Version: 0.7-7.1 >> Severity: grave >> Tags: security >> Justification: user security hole >> >> >> Several of the applications in this package now routinely segfault and >> leave the port in promiscuous mode with no warning. The problem was first >> reported nearly ten years ago (7794 and 12306) and no action has been >> taken. >> >> Judging from the Changelog, the maintainer has been awol for three years; >> the package should probably be orphaned. >> > > Just about all of the programs in netdiag have been abandoned upstream. > > You are welcome to submit patches or offer to take over maintenance of one of > the programs. Personally I'm tempted to ask ftp-master to remove it from > Debian. > > FWIW, I disagree with this bug's severity. > Hi Robert,
It's good to see you're still here! I'd like the functionality of the programs, but in their current shape they consistently crash and leave your machine vulnerable. Anyway, the decision is yours. Dave -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
