Hosting Provided By

debsecan vs. debian-volatile

From: Aneurin Price <aneurin.price(at)gmail.com>
Date: Mon Sep 03 2007 - 09:17:24 EDT

Hi all, I hope this question is appropriate for this list. Feel free to chide me appropriately if not :P.

I'm running sarge with clamav from debian-volatile, and debsecan reports some vulnerabilities with it. I'm fairly sure that the version I have installed (0.91.2-0volatile1) is in fact okay, and that the problem is simply that debsecan doesn't understand volatile - based on the vulnerability descriptions which seem to be telling me that the vulnerabilities are fixed in the version I'm using.

I would however be grateful if anybody could confirm this to be the case - or point out if I'm wrong.

Thanks for your time,
Aneurin Price

-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Mon Sep 3 09:18:00 2007

This message: [ Message body ]
Next message: Stephen Gran: "Re: debsecan vs. debian-volatile"
Previous message: Mark Brown: "Re: fail2ban vs. syslogd compression"
Next in thread: Stephen Gran: "Re: debsecan vs. debian-volatile"
Reply: Stephen Gran: "Re: debsecan vs. debian-volatile"
Reply: Florian Weimer: "Re: debsecan vs. debian-volatile"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 07 2007 - 07:52:59 EDT