Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 20 Jan 2009 10:42:06 +0100
From: Sebastian Krahmer <>
Subject: Re: CVE request -- git

On Tue, Jan 20, 2009 at 10:31:58AM +0100, Tomas Hoger wrote:

> >
> > Only opensuse 11.0 and 11.1 were affected by diff.external
> > issue and packages have been released for that.
> SUSE-SR:2009:001 only mentions fix for 10.3.  I probably missed other
> report mentioning fixes in 11.x.
I am not the Incident Manager in charge, but AFAIR both issues
have been tracked separately and the remote-fix has been released
sooner, also b/c of its larger severity, which makes sense.
Honestly, diff.external is not a very severe bug but
it will probably be announced in the weekly report (if it
hasnt). Additionally, the autoupdater shows exactly
which issues have been fixed.


~ perl
~ $_='print"\$_=\47$_\47;eval"';eval
~ - SuSE Security Team
~ SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.