[VIM] Minimizing error cascades in vulnerability information management
Steven M. Christey
coley at linus.mitre.org
Tue Nov 7 16:10:36 EST 2006
On Tue, 7 Nov 2006, George A. Theall wrote:
> And while we're on the subject, I noticed that both SecurityFocus and
> Secunia claim incorrectly that the issue is resolved with Cumulative Fix
> 10 for the 5.1 series. [CVE doesn't mention that 5.1 is affected; it
> is.] The fix was meant to be included in that Fix but didn't actually
> make it until Cumulative Fix 12; ie, see:
> I did verify that Cumulative Fix 12 did indeed correct the problem.
Wow, we've all done a bangup job on this one, eh? Looks like IBM
accidentally omitted this series of versions in their initial APAR.
Thanks, fixed in CVE...
More information about the VIM