On Wed, 8 Sep 2004, Niall Walsh wrote:
> By debian standards you lose them (you get to update your packages
> not security updates), by any other distributions standards you are
> probably still far far ahead of the game!
Hmmm.. I read LWN, and I have the vague notion Debian is, more often
than not, not the speediest to release security updates. If someone
knew of a URL to a more rigorous analysis, that would be interesting,
or they could trawl through:
http://lwn.net/Vulnerabilities/
Some of the more interesting IDs, eg commonly used software, are:
http://lwn.net/Vulnerabilities/100607/http://lwn.net/Vulnerabilities/94732/http://lwn.net/Vulnerabilities/100358/http://lwn.net/Vulnerabilities/97725/http://lwn.net/Vulnerabilities/96389/http://lwn.net/Vulnerabilities/93071/
etc..
For those where no debian advisory is listed: it could partly be due
to debian not shipping affected versions of the software, but some of
the vulnerabilities above affect wide-ranging swathes of versions of
the software concerned.
> Niall Walsh
regards,
--
Paul Jakma paul at clubi.iepaul at jakma.org Key ID: 64A2FF6A
Fortune:
Grinnell's Law of Labor Laxity:
At all times, for any task, you have not got enough done today.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
