On Fri, Feb 03, 2017 at 08:58:45AM -0500, Sephiroth Storm wrote: > Your repos currently have 4.7.x as the latest version of tcpdump available > when it is up to 4.9.x. As your version of tcpdump may have numerous > vulnerabilities, when will the repo be populated with the updated version?
In addition to what Nish said, note that we usually backport security fixes to the stable release. You won't see the upstream version number go up, but the security vulnerabilities will be fixed. Therefore you cannot use the upstream version number as an indicator of whether security vulnerabilities exist or not in any distribution package.
signature.asc
Description: PGP signature
-- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
