Hi Mark and Fedora security folks,
Relatively recently, RHEL and Fedora put out updates for giflib
problems with CVEs from 2005 ... I am curious how it took so long
(nearly 4 years) to handle them ... and then took another month to get
them into Fedora 9 (there is no update for F10, not vulnerable?) ... was
it just an oversight? or were there other reasons?
http://lwn.net/Articles/333760/ has links to the updates and such (and
a comment from a reader wondering just what I am asking) ...
Jake Edge - LWN - jake(a)lwn.net - http://lwn.net