Hi,
In case noone noticed, news of a Sendmail vulnerability appeared
on Slashdot. The really interesting piece of the story for me was the
portion of the blurb with said "...RedHat and OpenBSD have already issued
patches.....links to an update from SuSE, too".
What about Debian? I just looked at http://security.debian.org and
see no mention of this vulnerability. I dont use Sendmail myself.
Nevertheless I am still concerned that the people who notify vendors are
not notifying Debian ahead of time before vulnerabilities are publicly
announced. Is that the case? Can someone in the know comment?
Thanks,
Jor-el
