[SATLUG] Debian Vulnerability (incl. Ubuntu)

Al Castanoli afcasta at satx.rr.com
Wed May 14 06:51:38 CDT 2008

I saw this [1] on the Sun/Solaris weekly alerts mailing list, and
backtracked it to the CVE [2].  The CVE is still preliminary and has not
been formally released.

I've acted upon preliminary CVEs before and later found out a simpler
solution was possible.  I'm holding off on changing my production
servers until the final CVE gets released.

[1] http://sunsolve.sun.com/search/document.do?assetkey=1-66-237444-1
[2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483

Al Castanoli

On Tue, 2008-05-13 at 10:07 -0700, Ernest De Leon wrote:
> http://www.smbtechadvice.com/2008/05/debian-security-advisory-openssl.html
> Check it out...
> -- 
> Ernest de Leon
> http://www.smbtechadvice.com
> "They who can give up essential liberty to obtain a little temporary safety
> deserve neither liberty nor safety." - A common 18th Century sentiment
> voiced by Benjamin Franklin
> "A patriot must always be ready to defend his country against his
> government." - Edward Abbey
> "All that is necessary for evil to triumph is for good men to do nothing." -
> Edmund Burke, English statesman and political philosopher (1729-1797)

More information about the SATLUG mailing list