Thanks for the patches! Based on https://wiki.ubuntu.com/SecurityTeam/UpdatePreparation#Packaging, the lucid update should use 0.52-4ubuntu0.10.04.1 as the version. Oneiric should use a patch name of 0004-Fix-use-after-free-bug- CVE-2012-0920.diff since 0004 already exists. I have adjust both for this and uploaded.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/976360 Title: CVE-2012-0920 needs fixing, server use-after-free To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dropbear/+bug/976360/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
