[Secure-testing-team] Kernel vulnerabilities in sarge-checks
Andres Salomon
dilinger at debian.org
Tue Mar 22 16:41:38 UTC 2005
On Tue, 2005-03-22 at 12:32 +0000, Dominic Hargreaves wrote:
> Hi,
>
> I noticed that while kernel vulns appear as kernel-source packages, we
> are not tracking the various kernel-image packages. Should we not also
> be doing this? As an example, I note that there are many
> vulnerabilities fixed in kernel-source-2.6.8 2.6.8-14, but that
> kernel-image-2.6.8-i386 has still not been built against it (and neither
> has any bug been filed against it).
>
> Cheers,
>
Note that I just uploaded k-s-2.6.8 2.6.8-15, and have built i386
images. Once I verify the ABI hasn't changed, I'll upload the i386
images. Please submit bugs on any security holes not fixed by -15.
--
Andres Salomon <dilinger at debian.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20050322/3bf697d8/attachment.pgp
More information about the Secure-testing-team
mailing list