Re: upcoming release 6.1: old version of some core components

Ted Mittelstaedt wrote: Alex, you would lose that bet, zlib 1.2.2 has a hole in it, it should have been replaced with 1.2.3 See the zlib website for more info. Nospam, good catch, if none of the hip-shooters here file a PR I'll get around to it the next time I get a running build off the cvs.

RE: upcoming release 6.1: old version of some core components

did i ever mention i love communities! ;-) well, 1st of all, thx 2 all the people who gave it a whirl and went deeper into cvs as i would ever do (i'm definitely not a dev ;-), btw. that was my reason for asking this on the list ) 2nd, the thing alex brought up is very confusing, because it

Re: upcoming release 6.1: old version of some core components

On Wed, Apr 12, 2006 at 10:18:08AM +0100, Alex Zbyslaw wrote: Ted Mittelstaedt wrote: Alex, you would lose that bet, zlib 1.2.2 has a hole in it, it should have been replaced with 1.2.3 See the zlib website for more info. Nospam, good catch, if none of the hip-shooters here file a PR

Re: upcoming release 6.1: old version of some core components

Kris Kennaway wrote: On Tue, Apr 11, 2006 at 05:46:06PM +0200, [EMAIL PROTECTED]@mgEDV.net wrote: I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no known security issues in the older packages. At least for openssl and openssh

Re: upcoming release 6.1: old version of some core components

On Wed, Apr 12, 2006 at 08:42:44PM +0200, martinko wrote: Kris Kennaway wrote: On Tue, Apr 11, 2006 at 05:46:06PM +0200, [EMAIL PROTECTED]@mgEDV.net wrote: I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no known security

Re: upcoming release 6.1: old version of some core components

Kris Kennaway wrote: On Wed, Apr 12, 2006 at 08:42:44PM +0200, martinko wrote: Kris Kennaway wrote: On Tue, Apr 11, 2006 at 05:46:06PM +0200, [EMAIL PROTECTED]@mgEDV.net wrote: I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no

Re: upcoming release 6.1: old version of some core components

On Wed, Apr 12, 2006 at 09:07:11PM +0200, martinko wrote: and it feels they're not going to release 1.0 any time soon.. i've been seeing 0.9.something for longer than i can remember. and btw i've always thought of openssl and openssh as somehow coupled/interconnected. but openssl hasn't

RE: upcoming release 6.1: old version of some core components

-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of [EMAIL PROTECTED]@mgEDV.net Sent: Wednesday, April 12, 2006 4:00 AM To: freebsd-questions@freebsd.org Subject: RE: upcoming release 6.1: old version of some core components did i ever mention i love

RE: upcoming release 6.1: old version of some core components

-Original Message- From: Kris Kennaway [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 12, 2006 10:53 AM To: Alex Zbyslaw Cc: Ted Mittelstaedt; freebsd-questions@freebsd.org Subject: Re: upcoming release 6.1: old version of some core components So unless the fixes somehow were un

Re: upcoming release 6.1: old version of some core components

On Tue, 11 Apr 2006 14:55:06 +0200 [EMAIL PROTECTED]@mgEDV.net [EMAIL PROTECTED] wrote: hi together, during testing the 6.1-BETA4 i found only one major thing i really like to discuss on the list for my understanding. why are some major parts of the os are not updated to the current

Re: upcoming release 6.1: old version of some core components

[EMAIL PROTECTED]@mgEDV.net wrote: during testing the 6.1-BETA4 i found only one major thing i really like to discuss on the list for my understanding. why are some major parts of the os are not updated to the current versions (see examples beyond)? code-improvements and

RE: upcoming release 6.1: old version of some core components

I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no known security issues in the older packages. At least for openssl and openssh you can get latest versions through the ports. Not an option for everything -- I see no zlib for

Re: upcoming release 6.1: old version of some core components

[EMAIL PROTECTED]@mgEDV.net wrote: I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no known security issues in the older packages. At least for openssl and openssh you can get latest versions through the ports. Not

Re: upcoming release 6.1: old version of some core components

In the last episode (Apr 11), [EMAIL PROTECTED]@mgEDV.net said: I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no known security issues in the older packages. At least for openssl and openssh you can get latest versions

Re: upcoming release 6.1: old version of some core components

On Tue, Apr 11, 2006 at 05:46:06PM +0200, [EMAIL PROTECTED]@mgEDV.net wrote: I can't answer you main question, but I would say that you can bet your shirt on the fact that there will be no known security issues in the older packages. At least for openssl and openssh you can get

RE: upcoming release 6.1: old version of some core components

Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Alex Zbyslaw Sent: Tuesday, April 11, 2006 6:25 AM To: freebsd-questions@freebsd.org Subject: Re: upcoming release 6.1: old version of some core components [EMAIL PROTECTED]@mgEDV.net wrote: during testing the 6.1-BETA4 i found

RE: upcoming release 6.1: old version of some core components

Hi All, nospam, I just checked the cvs, and they did catch zlib, 1.2.3 is in there now. /usr/src/lib/libz. BETA4 is older than the current cvs Note that some programs (cvs) seem to have copies of zlib.c that are older, maybe that's what your seeing? as for openssl, it is still at 0.9.7e