Re: Mandrake & CERT advisories
From: George Burns (adr@lanline.com)
Date: 03/05/03
- Next message: Nico Kadel-Garcia: "Re: Mandrake & CERT advisories"
- Previous message: Stefan Schlott: "Re: CVS pserver with PAM"
- In reply to: Kevin: "Mandrake & CERT advisories"
- Next in thread: Kevin: "Re: Mandrake & CERT advisories"
- Reply: Kevin: "Re: Mandrake & CERT advisories"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "George Burns" <adr@lanline.com> Date: 5 Mar 2003 07:48:05 -0600
send an email to security@linux-mandrake.com with subscribe in the subject
line. They are very proactive in announcing vulnerabilities and patches to
their user community. For example,the latest announce [MDKSA-2003:028 -
Updated sendmail packages fix remotely exploitable buffer overflow
vulnerability] cites all the standard references:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1337
http://www.kb.cert.org/vuls/id/398025
http://www.cert.org/advisories/CA-2003-07.html
and please read carefully before applying any patches. They tend to have
very specific procedures.
"Kevin" <nobody@tex.kom> wrote in message
news:cI59a.18$gz1.2215@paloalto-snr1.gtei.net...
> Why is it that Mandrake is never listed in the CERT security
> advisories in the vendors section of their postings over at
> comp.security.announce? I see Red Hat in those postings, usually
> with a "we're not vulnerable to that" comment.
>
> Anyone know?
>
> --
> Unless otherwise noted, the statements herein reflect my personal
> opinions and not those of any organization with which I may be affiliated.
- Next message: Nico Kadel-Garcia: "Re: Mandrake & CERT advisories"
- Previous message: Stefan Schlott: "Re: CVS pserver with PAM"
- In reply to: Kevin: "Mandrake & CERT advisories"
- Next in thread: Kevin: "Re: Mandrake & CERT advisories"
- Reply: Kevin: "Re: Mandrake & CERT advisories"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
