[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?

To: paul.leopardi@xxxxxxxxxxx
Subject: Re: [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?
From: Roman Drahtmueller <draht@xxxxxxx>
Date: Tue, 23 Sep 2003 03:33:07 +0200 (MEST)
Cc: suse-security@xxxxxxxx
Delivered-to: mailing list suse-security@xxxxxxxx
Delivery-date: Tue, 23 Sep 2003 03:33:45 +0200
Envelope-to: suse@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <200309230808.54160.leopardi@xxxxxxxxxxxxxx>
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
References: <200309221210.38626.leopardi@xxxxxxxxxxxxxx> <200309221141.07382.matthias-wieser@xxxxxxxxxxx> <200309230808.54160.leopardi@xxxxxxxxxxxxxx>

> 
> Hi all,
> Re: http://www.securitytracker.com/alerts/2003/Sep/1007721.html
> There is still no security advisory from SuSE, and no KDE 3.1.4 RPMs.

Right.
So yes, you're vulnerable if you're using pam_krb5. Most people don't.

> Does SuSE expect me to compile KDE from source?
> 
> Normally SuSE is very quick with advisories and security updates. This time, 
> it is making think seriously about switching to Red Hat, or at least not 
> buying SuSE 9.0. If SuSE is delaying KDe 3.1.4 because of the effort being 
> put into SuSE 9.0, this tactic is backfiring.
> 
> To SuSE: please keep up to date with security advisories. This is the main 
> reason I have been buying your boxed distributions.

Acknowleged. We're doing our best. This one just takes a bit time.

> Thanks

Thanks,
Roman.
-- 
 -                                                                   -
| Roman Drahtmüller      <draht@xxxxxxx> //      Nail here            |
  SuSE Linux AG - Security       Phone: //       for a new            
| Nürnberg, Germany     +49-911-740530 //        monitor!     --> [x] |
 -                                                                   -

--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

References:
- [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?
  - From: Paul C. Leopardi
- Re: [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?
  - From: Matthias Wieser
- Re: [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?
  - From: Paul C. Leopardi

Prev by Date: Re: [suse-security] SuSE Security Announcement: sendmail, sendmail-tls (SuSE-SA:2003:040)
Next by Date: Re: [suse-security] Re: SuSE Security Announcement: sendmail, sendmail-tls (SuSE-SA:2003:040)
Previous by thread: Re: [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?
Next by thread: Re: [suse-security] Why no SuSE RPMs for KDE 3.1.4 security update?
Index(es):
- Date
- Thread