Specifically we are studying how versions fixed vulnerabilities by diffing the code functions where the CVE states the vulnerability was. We're also wondering why there are no listed CVEs after 2007 for tcpdump. http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=tcpdump
Cellular (304) 276-8628 Raymond Borges MSCS/BSCpE SREB Fellow CS Ph.D. Student Lane Department of CS/EE West Virginia University CompTIA A+, Network+, Security+ CE On Fri, Mar 15, 2013 at 8:45 AM, Michael Richardson <m...@sandelman.ca>wrote: > > >>>>> "Raymond" == Raymond Borges <borgesraym...@gmail.com> writes: > Raymond> I'm doing research on tcpdump and I've been trying to > Raymond> locate the source code for versions previous to 3.5.0 but > Raymond> haven't had much luck. Do you know where I might find > Raymond> these? Thank you. > > hi, 3.5 was released in 2000. > That was the first release by the tcpdump.org group. > > Prior to that it would have been done by the LBL folks... the 3.4 > release was probably 3-4 years earlier. We have the CVS tree back to > the beginning, and it was imported into git, so there maybe some > evidence of what it looked like. > > What specific questions were you trying to answer in your research? > > -- > Michael Richardson > -on the road- > _______________________________________________ tcpdump-workers mailing list tcpdump-workers@lists.tcpdump.org https://lists.sandelman.ca/mailman/listinfo/tcpdump-workers
