list package changelog

Here is a little known secret that allows you to view the change log of a package. Using –changelog option you can find out if particular security bug is fixed or not. This is extremely useful option for production boxes. For example CVE-2007-1864 documents that php has serious buffer overflow in the bundled libxmlrpc library […]

{ 1 comment }