Re: How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

In <20110509043430.ga1...@cox.net>, Robert Holtzman wrote: >On Sun, May 08, 2011 at 10:08:31PM +0200, Florian Weimer wrote: >> * Kelly Dean: >> > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was >> > published Sept 30, 2010, and says that Linux 2.6.32.5 is >> > vulnerable. Squeeze

Re: How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

On Sun, May 08, 2011 at 10:08:31PM +0200, Florian Weimer wrote: > * Kelly Dean: > > > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was > > published Sept 30, 2010, and says that Linux 2.6.32.5 is > > vulnerable. Squeeze uses 2.6.32-5, built on Jan 12, 2011. Is > > Squeeze's kernel

Re: How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

* Kelly Dean: > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was > published Sept 30, 2010, and says that Linux 2.6.32.5 is > vulnerable. Squeeze uses 2.6.32-5, built on Jan 12, 2011. Is > Squeeze's kernel fixed, or does it have the vulnerability? According to our records, this i

Re: How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

Hello, Johan Grönqvist a écrit : > 2011-02-15 22:46, Kelly Dean skrev: >> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was >> published Sept 30, 2010, and says that Linux 2.6.32.5 is vulnerable. >> Squeeze uses 2.6.32-5, built on Jan 12, 2011. Is Squeeze's kernel >> fixed, or does

Re: How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

On 2011-02-15, Kelly Dean wrote: > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was published > Sept 30, 2010, and says that Linux 2.6.32.5 is vulnerable. Squeeze uses > 2.6.32-5, built on Jan 12, 2011. Is Squeeze's kernel fixed, or does it have > the vulnerability? My interpr

Re: How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

2011-02-15 22:46, Kelly Dean skrev: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was published Sept 30, 2010, and says that Linux 2.6.32.5 is vulnerable. Squeeze uses 2.6.32-5, built on Jan 12, 2011. Is Squeeze's kernel fixed, or does it have the vulnerability? To begin with: I

How up-to-date is Debian's stable release kept to fix published kernel security vulnerabilities?

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2943 was published Sept 30, 2010, and says that Linux 2.6.32.5 is vulnerable. Squeeze uses 2.6.32-5, built on Jan 12, 2011. Is Squeeze's kernel fixed, or does it have the vulnerability? http://security-tracker.debian.org/tracker/status/re