Hello all, Le 06/11/2011 09:21, Thijs Kinkhorst a écrit : > ------------------------------------------------------------------------- > Debian Security Advisory DSA-2337-1 [email protected] > ... > Package : xen > Vulnerability : several vulnerabilities > ... > We recommend that you upgrade your xen packages.
Since the upgrade will not be sufficient to get rid of this kind of security issue, i think the recommendation in the DSA should include the reboot part of the correction. By the way, could it be better if the xen package, when upgraded, uses the same policy as the linux kernel and says the machine needs to be rebooted (using /var/lib/reboot-required) ? This would prevent users to upgrade and forget about the reboot, thinking they are protected from the issue. Regards -- Davy Gigan Administrateur Systèmes et Réseaux Laboratoire GREYC / Département Informatique Université de Caen Basse-Normandie
signature.asc
Description: OpenPGP digital signature
