On Thu, Jul 10, 2003 at 04:24:51PM +0100, M A Young wrote: > On Thu, 10 Jul 2003, Price Technology wrote: > > > <feeble old brain surge> > > Seems I remember an Apache update in amongst the list of updates to Shrike. > > </feeble old brain surge> > > Yes but that only gets you the 2.0.46 security fixes, there seems to be a > new set of holes fixed in the newly released 2.0.47, which RedHat will > presumably backport in due course. That's correct; the current errata for 8.0 and 9 track security fixes up to and including 2.0.46, with one extra fix which is not actually included in upstream's 2.0.47: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0020 The three new (minor) security issues fixed in 2.0.47 are being tracked here: http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=98852 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=98853 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=98855 Regards, joe -- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
