PHP Vulnerability
Stefan Sonnenberg-Carstens
ssc at coolspot.de
Tue Dec 21 09:11:52 UTC 2004
Jani Kesänen wrote:
>As Kenneth Porter pointed out last week there isn't any update to
>these php security issues.
>
>https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=141132
>
>Debian and Gentoo both reacted immediately. This is madness I tell
>you. The only change seems to be that we'll have to shutdown every
>webserver and switch distributions. This really isn't nice xmas
>present from Fedora development.
>
>
>
Don't you think some people have reasons to wait with
pulling patches and fixes out ?
Gentoo guys do everything "immediately". But they don't care
about backward or binary compatibility. They just recompile
everything.
Debian did a good job, indeed, more over as the back-ported to
older versions.
But I'm working with RH/Fedora products for more than 6 years
now, and I always loved their stability and quality management.
Nobody stops you from updating packages your self from source.
And, of course, your are talking about RHEL, which has much
higher goals than Fedora, in terms of standing time.
More information about the devel
mailing list