Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 18 Oct 2012 23:34:14 +0300
From: Henri Salo <henri@...v.fi>
To: oss-security@...ts.openwall.com
Subject: Re: CVE-2012-2248: isc-dhcp, Debian-specific: build
 path included in PATH

On Thu, Oct 18, 2012 at 02:19:06PM -0600, Kurt Seifried wrote:
> Part of it also depends on usage. Google labels everything as a Beta,
> sometimes for years and with millions of users. My experience is a lot
> of people use Debian unstable (when I used Debian I did, otherwise
> everything was to boring =). What would be interesting is if you could
> provide download statistics from the main site. I know for a fact
> CVE's have been assigned for publicly released applications that are
> probably in use by less than 100 or in extreme cases possibly less
> than 10 people globally.

I use stable. Usually one can't easily say how many users there is for package x. :)

- Henri Salo

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.