Pretty useless in the current form. Package should either be adapted as outlined in bug #92925 or removed from Ubuntu. Evidence below of how useless the package is in the current form.
""" $ debsecan | sort | head CVE-2006-4310 firefox-globalmenu (remotely exploitable, medium urgency) CVE-2006-4310 firefox-gnome-support (remotely exploitable, medium urgency) CVE-2006-4310 firefox-locale-en (remotely exploitable, medium urgency) CVE-2006-4310 firefox (remotely exploitable, medium urgency) CVE-2006-5462 firefox-globalmenu (remotely exploitable, high urgency) CVE-2006-5462 firefox-gnome-support (remotely exploitable, high urgency) CVE-2006-5462 firefox-locale-en (remotely exploitable, high urgency) CVE-2006-5462 firefox (remotely exploitable, high urgency) CVE-2006-5463 firefox-globalmenu (remotely exploitable, high urgency) CVE-2006-5463 firefox-gnome-support (remotely exploitable, high urgency) $ sudo unattended-upgrade -d Initial blacklisted packages: Starting unattended upgrades script Allowed origins are: ['o=Ubuntu,a=natty', 'o=Ubuntu,a=natty-security', 'o=Ubuntu,a=natty-updates', 'o=Ubuntu,a=natty-proposed', 'o=Ubuntu,a=natty-backports', 'o=Canonical,a=natty', 'o=LP-PPA-app-review-board,a=natty', 'o=LP-PPA-ubuntu-wine,a=natty'] pkgs that look like they should be upgraded: Fetched 0 B in 0s (0 B/s) blacklist: [] InstCount=0 DelCount=0 BrokenCout=0 No packages found that can be upgraded unattended $ lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu 11.04 Release: 11.04 Codename: natty """ ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2006-4310 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2006-5462 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2006-5463 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/498058 Title: debsecan should be removed from Ubuntu repositories To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/debsecan/+bug/498058/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
