tech-pkg: tcpdump 3.7.2 vulnerabilities

Subject: tcpdump 3.7.2 vulnerabilities
To: None <tech-pkg@netbsd.org>
From: Chris Ross <cross+netbsd@distal.com>
List: tech-pkg
Date: 01/24/2005 17:19:53

   Hello there.  I see that the HEAD of pkgsrc still has 
tcpdump-3.7.2nb3,
and that this has [at least] 4 vulnerabilities listed for it.  Why 
hasn't the
pkgsrc tcpdump been updated to 3.8.3?  Any reason?

   Any possibility of this happening?  I'm trying to get rid of the noted
vulnerabilities on one of my machines, but don't see how to get rid
of this one.

   Thanks...

                          - Chris