[PLUG] Ubuntu security issues

Paul Mullen pm at nellump.net
Fri Oct 19 20:32:47 UTC 2007


On Fri, Oct 19, 2007 at 01:00:46PM -0700, Ed Sawicki wrote:
> 
> The /usr/share/doc/openssl/changelog starts out like this:

Unless Ubuntu had a better idea, there should also be a
Debian-specific changelog in /usr/share/doc/openssl. It contains
information about the patches the Debian package maintainers applied:

  $ zcat changelog.Debian.gz | head
  openssl (0.9.8c-4etch1) stable-security; urgency=low
  
    * CVE-2007-5135: Fix off by one error in SSL_get_shared_ciphers().
      (Closes: #444435)
    * Add nagios-nrpe-server, clamav-freshclam and clamav-daemon
      to the list of services to check for restart.
  
The "Closes: #nnnnnn" refers to a Debian bug report. If you really
want the gory details, you can look up bug reports at
<http://www.debian.org/Bugs/>. 

-- 
Paul



More information about the PLUG mailing list