hi yoann, On Sat, Jul 02, 2005 at 11:15:50AM +0200, yoann wrote: > A full sarge server was compromised by this vulnerability > is the patch will be availbale soon for debian stable ?
it's hard to tell. unfortunately 3 *more* vulnerabilities were
released yesterday, so i see one of two things happening:
- we release the previous security release, and then you'll be
waiting for the second security release
- the timer resets and we release both updates at the same time,
at a later time.
in any case, cacti will not be "safe" for another week by my guesses
(though this is ultimately out of my hands). in the meantime,
you can grab the debs from my people.debian.org site (which do not yet
fix the second set of vulnerabilities, but check for a version -7sarge2
in the next 24 hours), or grab cacti from unstable, which addresses both
groups of vulnerabilities).
sean
--
signature.asc
Description: Digital signature
