[Secure-testing-commits] r30259 - data/CVE

Intrigeri intrigeri at moszumanska.debian.org
Sat Nov 22 19:21:36 UTC 2014


Author: intrigeri
Date: 2014-11-22 19:21:36 +0000 (Sat, 22 Nov 2014)
New Revision: 30259

Modified:
   data/CVE/list
Log:
Indeed, it was Ubuntu-specific.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-22 19:04:57 UTC (rev 30258)
+++ data/CVE/list	2014-11-22 19:21:36 UTC (rev 30259)
@@ -19936,9 +19936,12 @@
 CVE-2014-1425
 	RESERVED
 CVE-2014-1424
-	RESERVED
-	- apparmor <unfixed>
-	TODO: check, possibly Ubuntu specific according to information from Ubuntu sec-tracker
+	NOT-FOR-US: Ubuntu-specific backport
+	NOTE: Caused by a patch that was added to the Ubuntu packaging before
+	NOTE: it was taken upstream. The one that was merged upstream (and part
+	NOTE: of AppArmor 2.9.0) is not affected. The closest version to the
+	NOTE: affected one that we ever had in Debian (2.8.96~2652) did not
+	NOTE: include the faulty patch.
 CVE-2014-1423
 	RESERVED
 CVE-2014-1422




More information about the Secure-testing-commits mailing list