On Tue, 2022-03-08 at 14:21 +0100, Mayeul Cantan wrote: > Hello, and thank you for your work on Debian and backports. > > I was checking if my buster install was vunerable to CVE-2022-0847 (aka > "Dirty pipe"). > > I use a kernel from buster-backports due to hardware constraints. The > latest available version is 5.10.92 [1]. The vulnerability was fixed in > 5.10.102 [2]. I am assuming the current kernel is vulnerable? [...] The fix was included in Debian version 5.10.92-2. I'll update the version in buster-backports shortly. Ben. -- Ben Hutchings - Debian developer, member of kernel, installer and LTS teams
Attachment:
signature.asc
Description: This is a digitally signed message part