sosreport in trusty is also vulnerable to CVE-2014-0246. I'll pull this patch in to fix it:
https://github.com/sosreport/sos/commit/7b46d346 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-0246 ** Changed in: sosreport (Ubuntu Trusty) Assignee: Louis Bouchard (louis-bouchard) => Tyler Hicks (tyhicks) ** Changed in: sosreport (Ubuntu Vivid) Assignee: Louis Bouchard (louis-bouchard) => Tyler Hicks (tyhicks) ** Changed in: sosreport (Ubuntu Wily) Assignee: Louis Bouchard (louis-bouchard) => Tyler Hicks (tyhicks) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1525271 Title: CVE-2015-7529 needs to be backported to supported releases To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sosreport/+bug/1525271/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
