Hi. Just to remind you: there is quite a number of old security problems open. For most of these fixes are available: Problem Fix CVE-2012-4542 https://lkml.org/lkml/2013/1/24/279 CVE-2012-2372 https://patchwork.kernel.org/patch/1493571/ CVE-2012-4508 Fixed in unstable, but not in stable CVE-2012-5374 9c52057c698fb96f8f07e7a4bcf4801a092bda89 CVE-2012-5375 " CVE-2012-6539 43da5f2e0d0c69ded3d51907d9552310a6b545e8 CVE-2012-6549 fe685aabf7c8c9f138e5ea900954d295bf229175 CVE-2013-0343 no good fix, but http://seclists.org/oss-sec/2013/q1/92 contains some tries and discussion. moreover I am not sure if the problem is real. CVE-2013-1819 eb178619f930fa2ba2348de332a1ff1c66a31424 Is there any chance that these are fixed before wheezy gets stable? cu AW -- [...] If you don't want to be restricted, don't agree to it. If you are coerced, comply as much as you must to protect yourself, just don't support it. Noone can free you but yourself. (crag, on Debian Planet) Arne Wichmann (aw@linux.de)
Attachment:
signature.asc
Description: Digital signature