[Pkg-virtualbox-devel] Bug#735410: Information on recent VBox CVEs
Moritz Muehlenhoff
jmm at inutil.org
Sun Mar 9 18:20:59 UTC 2014
On Sun, Mar 09, 2014 at 06:51:56PM +0100, Felix Geyer wrote:
> Hi,
>
> On 09.02.2014 02:04, Moritz Mühlenhoff wrote:
> > On Sun, Feb 09, 2014 at 01:14:08AM +1300, Matthew Daley wrote:
> >> Hi,
> >>
> >> I've recently released some more detailed information on these CVEs
> >> that can hopefully help out; see
> >> <http://seclists.org/fulldisclosure/2014/Feb/48>.
> >
> > Saw that, thanks for following up in the bug log.
> >
> > Felix, given that the scope is actually broader than local DoS
> > we should handle this via -security.
>
> I finally got around to test the fixed packages for squeeze and wheezy.
> Sorry it took so long ...
>
> The debdiffs I posted to this bug work fine.
> From my perspective they can be pushed to the security archive.
> Please let me know if you want me to upload them.
Please upload to security-master
Cheers,
Moritz
More information about the Pkg-virtualbox-devel
mailing list