[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: anybody wanting to have a look at fcron review?



> I take it the two CVEs from February are fixed in the packaged
> version?
> 
> http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-0575
> http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-0539

Yes, at least it is what is said upstream about those issues. Moreover
the vulnerable program, convert-fcrontab isn't shipped in the package 
submitted to fedora extras, so it is not vulnerable.

--
Pat


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]