Re: [HEADSUP] Removing vulnerable packages

To: Tim Zingelman <tez%netbsd.org@localhost>
Subject: Re: [HEADSUP] Removing vulnerable packages
From: Thomas Klausner <wiz%netbsd.org@localhost>
Date: Mon, 4 Apr 2011 16:15:06 +0200

On Sun, Apr 03, 2011 at 08:17:50AM -0500, Tim Zingelman wrote:
> It appears at a quick glance that both entries marking freetype-1.5
> vulnerable are typo's that should refer to freetype2 instead...
> freetype-lib-1.5 which is included by the freetype-1.5 metapackage has
> never been marked vulnerable.

Weird -- so old software without vulnerabilities. Probably noone ever
looked.

Please fix the entries when you find out.

> As for gdb6, the patch is here:
> https://bugzilla.redhat.com/show_bug.cgi?id=204841 I don't know if I
> can do anything about it before the freeze ends... family obligations
> popped up for today...  not sure how long they will take.

That's fine, if I know you'll take care of it I'll just leave the
package alone.

Thanks,
 Thomas

References:
- [HEADSUP] Removing vulnerable packages
  - From: Thomas Klausner
- Re: [HEADSUP] Removing vulnerable packages
  - From: Tim Zingelman

Prev by Date: Re: [HEADSUP] Removing vulnerable packages
Next by Date: Re: [HEADSUP] Removing vulnerable packages
Previous by Thread: Re: [HEADSUP] Removing vulnerable packages
Next by Thread: Re: [HEADSUP] Removing vulnerable packages
Indexes:

Home | Main Index | Thread Index | Old Index