from:"James Strandboge"

gtk+2.0 2.6.4-3.1 (DSA 911-1)-- patch for CVE-2005-2976 not included?

2005-12-06 Thread James Strandboge

In reviewing the changelog and source for gtk+2.0, CVE-2005-3186 and
CVE-2005-2975 are explicitly mentioned (and have patches in
debian/patches).  However, CVE-2005-2976 is not mentioned in the
changelog and does not have a separate patch in debian/patches, though
it is mentioned in the DSA.  Is this an oversight in the changelog or
was the patch not included? 

Thanks

-- 
James Strandboge
[EMAIL PROTECTED]


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: systrace

2005-10-17 Thread James Strandboge

On Mon, 2005-10-17 at 15:50 -0700, Stephan Wehner wrote:
 I'm wondering about having
 
   systrace
 
 available in debian. All I could find it used to be available in
 unstable, but is now orphaned with Thorsten Sauter being the last
 maintainer. Debian is mentioned at
 
   http://www.citi.umich.edu/u/provos/systrace/linux.html
 
 but that doesn't seem to be looked after (broken link)
 
 Are there other problems besides time? How much effort is it? Is it
 not a big gap in debian?

I too am interested in this.  I use it all the time on OpenBSD and it is
great.  Though it isn't as comprehensive as selinux, the learning curve
is much less steep.

Jamie


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

gtk+2.0 2.6.4-3.1 (DSA 911-1)-- patch for CVE-2005-2976 not included?

Re: systrace

2 matches

Site Navigation

Mail list logo

Footer information