On Mon, Dec 08, 2003 at 03:22:34AM -0600, Ryan Underwood wrote: > harden-localflaws package conflicts with some kernel-image packages > (needs to be updated for the <2.4.23 vulnerability) in order to ensure > that they are removed.
They are not vulnerable on at least 3 architectures, Debian supports.
> Would it be a better idea to, instead of removing the bad kernel package
> through a Conflicts: , instead through postinst on install and each
> update, scan the system for bad kernel packages and tell the admin about
> them so he can take manual action about it?
Write a proper test for the vulnerability (i don't think this is
possible)
Bastian
--
I'm frequently appalled by the low regard you Earthmen have for life.
-- Spock, "The Galileo Seven", stardate 2822.3
signature.asc
Description: Digital signature
