** Changed in: intel
Status: New = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1350140
Title:
[Feature] Update tboot to version 1.8.2
To manage notifications about this bug
This bug was fixed in the package tboot - 1.8.2~0ubuntu1
---
tboot (1.8.2~0ubuntu1) trusty; urgency=medium
* Security Fix: TBOOT Argument Measurement Vulnerability for GRUB2 + ELF
Kernels
CVE-2014-5118 - seclists.org/oss-sec/2014/q3/260
We have finished the validation of tboot 1.8.2 package at ubuntu14.04.1
with both legacy and efiboot mode. And we didn't find new bugs except
the known issues.
Change the tag to verification-done.
** Tags removed: verification-needed
** Tags added: verification-done
--
You received this bug
Hello Yingying, or anyone else affected,
Accepted tboot into trusty-proposed. The package will build now and be
available at http://launchpad.net/ubuntu/+source/tboot/1.8.2~0ubuntu1 in
a few hours, and then in the -proposed repository.
Please help us by testing this new package. See
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-5118
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1350140
Title:
[Feature] Update tboot to version 1.8.2
To manage
Unsubscribing ubuntu-security-sponsors, since there is no actionable
item for now. Please re-subscribe when a debdiff with the minimal fix is
available for sponsoring.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Changed in: tboot (Ubuntu Utopic)
Milestone: None = ubuntu-14.10
** Also affects: tboot (Ubuntu Trusty)
Importance: Undecided
Status: New
** Changed in: tboot (Ubuntu Trusty)
Status: New = In Progress
** Changed in: tboot (Ubuntu Trusty)
Assignee: (unassigned) = Tim
** Information type changed from Proprietary to Public
** Also affects: tboot (Ubuntu)
Importance: Undecided
Status: New
** Also affects: tboot (Ubuntu Utopic)
Importance: Undecided
Status: New
** Changed in: tboot (Ubuntu Utopic)
Status: New = In Progress
** Changed
This bug was fixed in the package tboot - 1.8.2-0ubuntu1
---
tboot (1.8.2-0ubuntu1) utopic; urgency=medium
* Security Fix: TBOOT Argument Measurement Vulnerability for GRUB2 + ELF
Kernels
* fix werror in 32 bit build environment
-LP: #1350140
-- Tim Gardner
Tim, thanks for the quick response!
I attached the bug report from the original reporter, and this
vulnerability already has a CVE ID assigned now: http://seclists.org
/oss-sec/2014/q3/260.
Considering the security impact, can we update tboot in 14.04 LTS to
v1.8.2?
--
You received this bug
** Attachment added: tboot_flaw.pdf
https://bugs.launchpad.net/intel/+bug/1350140/+attachment/4166292/+files/tboot_flaw.pdf
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1350140
Title:
11 matches
Mail list logo
