Am 28.01.2015 um 15:38 schrieb Benny Pedersen:
On 28. jan. 2015 14.57.27 "li...@rhsoft.net" <li...@rhsoft.net> wrote:
all serious distributions have a newer glibc or offer updates
Jan 28 05:41:58 Updated: glibc-common-2.5-123.el5_11.1.x86_64
Jan 28 05:42:03 Updated: glibc-2.5-123.el5_11.1.x86_64
what version of glibc is that?
the version of RHEL5 with the update
did you verify it solves all the cve in glibc 2.20?
it don't need to because it don't contain the CVE's introduced in later
versions, it just needs to fix the present ones
did you even google cve on glibc ?
the topic is about CVE-2015-0235 and i can read changelogs of rpm
packages (the good thing in pre-compiled packages)
* Mon Jan 19 2015 Siddhesh Poyarekar <siddh...@redhat.com> - 2.5-123.1
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235)
now you are again ignored here
i better don't say what *especially you* deserve for such a line
