Dear SSH maintainers, dear LTS team,
I just spent quite some time with reading openSSH code related to
checking if CVE-2015-5352 [1] needs to be fixed in Debian squeeze LTS.
The upstream commit for fixing CVE-2015-5352 is at [2]. The fix
addresses an issue with the ForwardX11Timeout option
I believe there was a general decision that squeeze LTS would not be
supported as a virtualisation host, so KVM, Xen, libvirt and QEMU are
on the 'not supported' list.
However, virtualbox-ose is not on that list, and it has many CVEs
reported against it and unfixed. Should it be added to the list
On Thu, Jul 16, 2015 at 05:42:58PM +0100, Ben Hutchings wrote:
> I believe there was a general decision that squeeze LTS would not be
> supported as a virtualisation host
Non, not in general.
> so KVM, Xen, libvirt and QEMU are on the 'not supported' list.
KVM, libvirt and qemu were excluded sin
On Thu, 2015-07-16 at 19:15 +0200, Moritz Mühlenhoff wrote:
> On Thu, Jul 16, 2015 at 05:42:58PM +0100, Ben Hutchings wrote:
> > I believe there was a general decision that squeeze LTS would not
> > be
> > supported as a virtualisation host
>
> Non, not in general.
>
> > so KVM, Xen, libvirt and
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of virtualbox-ose:
https://security-tracker.debian.org/tracker/CVE-2012-3221
https://security-tracker.debian.org/tracker/CVE-2013-3792
https://security-tracker.debian
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of icu:
https://security-tracker.debian.org/tracker/CVE-2015-4760
Would you like to take care of this yourself? We are still understaffed so
any help is always highl
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of cacti:
https://security-tracker.debian.org/tracker/CVE-2015-4634
Would you like to take care of this yourself? We are still understaffed so
any help is always hig
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of fuseiso:
https://security-tracker.debian.org/tracker/TEMP-0779047-E29D8E
https://security-tracker.debian.org/tracker/TEMP-0779047-8CABD5
Would you like to take ca
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of openjdk-6:
https://security-tracker.debian.org/tracker/CVE-2015-2590
https://security-tracker.debian.org/tracker/CVE-2015-2601
https://security-tracker.debian.org/
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of squid3:
https://security-tracker.debian.org/tracker/TEMP-000-AD2264
Would you like to take care of this yourself? We are still understaffed so
any help is alw
Hi,
On 16-07-15 20:40, Ben Hutchings wrote:
> Would you like to take care of this yourself?
Yes. There are probably more CVE's involved, although they are not
assigned yet. I am already communicating with the security team about this.
Paul
signature.asc
Description: OpenPGP digital signature
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of apache2:
https://security-tracker.debian.org/tracker/CVE-2015-3183
Would you like to take care of this yourself? We are still understaffed so
any help is always h
Hello dear maintainer(s),
the Debian LTS team would like to fix the security issues which are
currently open in the Squeeze version of libidn:
https://security-tracker.debian.org/tracker/CVE-2015-2059
Would you like to take care of this yourself? We are still understaffed so
any help is always hi
13 matches
Mail list logo
