----- Original Message ----- From: "Shane Williams" <[EMAIL PROTECTED]> To: "Mark" <[EMAIL PROTECTED]> Cc: "Qpopper Public List" <[EMAIL PROTECTED]> Sent: Friday, March 14, 2003 7:23 PM Subject: Re: Qpopper 4.0.5 (final) available
> What I do know is that this vuln was not released by Qualcomm, > but a member of the bugtraq mailing list. It was announced > without prior warning to the Qpopper developers, so they weren't > keeping you in the dark about anything they weren't themselves > in the dark about. Thanks for the clarification. It seems I was in error. I misread an announcement as coming from Qualcomm, which, had I done some better reading, came from a single individual. Sorry about that. > All things considered I'm super-impressed with the speed with which > Randall responded to the issue and provided patches for the problem > (as well as another non-exploitable bug in the code). Yes, I'd say a one day response time for a new version is a pretty good track record. :) I took the 4.0.5 update to the production environment now, and everything is running smoothly again like before -- minus the bug. :) - Mark
