trying to figure out fixes for CVE-2005-2974 and CVE-2005-3350
Jake Edge
jake at lwn.net
Sat May 23 16:55:18 UTC 2009
Hi Mark and Fedora security folks,
Relatively recently, RHEL and Fedora put out updates for giflib
problems with CVEs from 2005 ... I am curious how it took so long
(nearly 4 years) to handle them ... and then took another month to get
them into Fedora 9 (there is no update for F10, not vulnerable?) ... was
it just an oversight? or were there other reasons?
http://lwn.net/Articles/333760/ has links to the updates and such (and
a comment from a reader wondering just what I am asking) ...
thanks!
jake
--
Jake Edge - LWN - jake at lwn.net - http://lwn.net
More information about the security
mailing list