Rodney Mishima wrote:
> URL: http://apnews.excite.com/article/20030717/D7SB12M00.html
>
> an honest disclosure.
Don't feel too superior. LWN reports eight new vulnerabilities in
Linux software this week.* ** We'd like to think that Linux
distributions release patches faster and make updating easier than
Windows does, and that's certainly true for Debian, Redhat and Gentoo
(the distros I'm most familiar with), but there are still going to be
a lot of machines on the 'Net that will never get these fixed. Those
machines will eventually be 0wnzed.
In other news, I haven't seen this on Slashdot yet:
Microsoft loses key patent ruling
http://www.businessweek.com/technology/cnet/stories/1026595.htm
I heard from a friend that Intertrust is seeking an injunction
preventing Microsoft from shipping infringing products. That would
include the whole Windows, Office, and XBox product lines. Wouldn't
that be fun?
* The new vulnerabilities are:
apache, multiple vulnerabilities
mozilla, heap based buffer overflow
mpg123, buffer overflow
nfs-utils, xlog() off by one bug
phpgroupware, cross site scripting
traceroute-nanog, integer overflow
ucd-snmp, heap overflow
** I subscribe to LWN, and recommend it highly. At $5/month (less for
students), it's well worth the money. The weekly kernel
development summary alone is worth it. http://lwn.net/
--
Bob Miller K<bob>
kbobsoft software consulting
http://kbobsoft.com [EMAIL PROTECTED]
_______________________________________________
EuG-LUG mailing list
[EMAIL PROTECTED]
http://mailman.efn.org/cgi-bin/listinfo/eug-lug
