Bug#807614: grub2: CVE-2015-8370: buffer overflow when checking password entered during bootup

Salvatore Bonaccorso carnil at debian.org
Wed Dec 16 12:25:32 UTC 2015


Hi colin,

On Wed, Dec 16, 2015 at 11:49:21AM +0000, Colin Watson wrote:
> On Wed, Dec 16, 2015 at 12:22:06PM +0100, Salvatore Bonaccorso wrote:
> > Attached is proposed debdiff for the unstable version.
> 
> Thanks; but I already uploaded a cherry-pick of the (slightly different)
> upstream patch.

Great thanks. Updates for wheezy- and jessie-security were prepared by
Santiago already, and Luciano Bello planned to release the DSA update,
so no work needed for those FWIW.

Regards,
Salvatore



More information about the Pkg-grub-devel mailing list