Bugtraq: Re: CERT Vendor-Initiated Bulletin VB-98.04

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: CERT Vendor-Initiated Bulletin VB-98.04 - xterm.Xaw

From: perry () piermont com (Perry E. Metzger)
Date: Thu, 30 Apr 1998 18:16:15 -0400


Theo de Raadt writes:

What is this.  Is The Open Group now selling security patches only to
their members?

I asked the XFree86 people.  They have received no communication from TOG
about this at all.  I think this is extremely bad ethics on the part of
TOG to publish information on a security problem and then only give fixes
to people who have given them money.


For once, I agree completely with Theo. It was bad enough that TOG
decided to turn X into proprietary software -- saying that security
patches for back revs are proprietary is nearly unacceptable behavior.

Perry

By Date By Thread

Current thread:

Re: CERT Vendor-Initiated Bulletin VB-98.04 - xterm.Xaw Peter Jeremy (Apr 30)
- <Possible follow-ups>
- Re: CERT Vendor-Initiated Bulletin VB-98.04 - xterm.Xaw Perry E. Metzger (Apr 30)
  - Re: CERT Vendor-Initiated Bulletin VB-98.04 - xterm.Xaw Allanah Myles (Apr 30)
    - Re: CERT Vendor-Initiated Bulletin VB-98.04 - xterm.Xaw Alan Cox (May 01)
    - Re: CERT Vendor-Initiated Bulletin VB-98.04 - xterm.Xaw Snob Art Genre (May 01)
    - RSI.0001.05-01-98.ALL.QUAKE_SERVER mea culpa (May 01)
    - nestea does other things Ivan Moore (May 01)