perl regex vulnerability - debian - pcre only?

Jonathan Stowe jns at
Tue Nov 6 13:43:42 GMT 2007

On Tue, 2007-11-06 at 13:23 +0000, Nicholas Clark wrote:
>  I assume that he assumed
> that the Linux vendors would keep us informed. We've not been kept in the
> loop at all. Has Debian?


I know of at least one project where there is open hostility between the
team and debian because debian keep applying patches which have been
either *rejected* upstream or are fixes to work round broken libraries
where they won't package the fixed versions.

This signature kills fascists

More information about the mailing list