Todd Denniston, on 20/05/2005 16.15:
If debian has an update for the cvs binary, it would probably be a good idea
to update it, many security holes have been fixed since 1.11.1p1 (I suppose
debian may have patched them in to that version, it just scares me to see
such an old version being reported).
I use debian woody weekly updated .
I've checked on debian home page and for sarge and experimental the cvs
version is 1:1.12.9-13.
But i don't care about security holes: my cvs is in my intranet, not
reachable from the net.
I'll check for changelog to see if it worth the upgrading due to some
new feature, thanks.