Re: zlib security flaw?

From: <kfogel_at_collab.net>
Date: 2005-07-09 21:21:51 CEST

Branko Čibej <brane@xbc.nu> writes:
> Yes, I found that patch after I posted the above, but the problem is
> that I don't understand it -- in other words, I've no ides if it's
> correct.
>
> So, do I trust the FreeBSD people, or do I wait? Suggestions, please.

Can you understand it enough to know that it doesn't *introduce* any
security risks? In that case, I'd say trust the FreeBSD people and
use it.

(Sure, it would be nice to understand intimately every line of code we
depend on, but in practice that doesn't scale.)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Jul 9 22:10:22 2005

This message: [ Message body ]
Next message: Philip Martin: "Re: zlib security flaw?"
Previous message: kfogel_at_collab.net: "Re: Trivial patches?"
In reply to: Branko Čibej: "Re: zlib security flaw?"
Next in thread: Philip Martin: "Re: zlib security flaw?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]