Hi Tyler, well, I would like if possible to trash the ubuntu changelog, and start from the exact debian security changelog + the ubuntu change.
e.g. for vivid I started from the trusty changelog, but vivid has an ubuntu1 and ubuntu2 delta (that is already part of Debian changelogs) I would appreciate if the above fixes can start from the debian virtualbox.git (jessie and wheezy branches) http://anonscm.debian.org/cgit/pkg-virtualbox/virtualbox.git but they are nitpicks, I'm not sure about how ubuntu likes rewriting changelogs of previous releases :) (I'm an ubuntu vivid user x64 at this moment, I didn't upgrade to wily yet). So I did: download the last trusty from ubuntu.com install trusty x64 on a virtual machine install virtualbox (the current one) inside --fail because of the too new kernel (the dkms doesn't run successfully anymore) installed virtualbox from my ppa installed a trusty 32 bit inside my trusty VM, upgraded everything, rebooted them both everything was still running (I also installed the guest-* modules IIRC) for precise I did mostly the same install precise in a VM install the current virtualbox install trusty 32 bit inside the virtualbox poweroff the trusty VM inside the VM upgraded virtualbox to the ppa version rebooted the trusty VM checked that everything was still running fine after the upgrade. The problem about upgrades is that sometimes machines doesn't start anymore, but it should happen only between major releases, not minor. For me it is safe to update, but well, it is an huge piece of software, it might break on obscure operating systems, architectures, CPU, kernels and so on... So far the Debian work has been a complete success, so I think the Ubuntu same work will be too. (and I have to say, upstream is really good at testing minor releases and keep the work done correctly, with no regressions) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1517161 Title: virtualbox SRU for CVE To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/virtualbox/+bug/1517161/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
