Ethereal and other Security Questions

The Matt thompsma at colorado.edu
Mon Nov 10 18:25:11 UTC 2003


I know this is an official FAQ, but I've been wondering about it and
wanted some specific answers.  After getting the ethereal RHSA just now,
I wondered aloud...is Fedora Core vulnerable?  How about the recent CUPS
and coreutils RHSAs?  When I mentioned it on fedora-test a while back, I
was informed that it was:

your problem.
the current beta was/is only beta/test

Fair enough, it was a test release, I accept that.  Now Fedora Core is
at Release Level 1 and hopefully considered a full release and not a
test.  So, I ask again, what is the security/bug procedure of Fedora
Core?  Is there a "FCSA" list out there that mimics RHSA that I can
subscribe to?  I'd like to remove RHSA at some point unless it starts to
cover FC1.

Should I grab the Red Hat 9 packages to shore up these security holes if
the FC1 packages don't cover them (e.g., get ethereal*.0.9.16 until an
FC1 release appears)?

Matt

-- 
I am a theoretical chemist.  Fear me!
 Matt Thompson -- http://ucsub.colorado.edu/~thompsma/
 440 UCB, Boulder, CO  80309-0440
 JILA A510, 303-492-4662
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20031110/e0b05c0f/attachment-0001.sig>


More information about the fedora-list mailing list