Re: Re: linux-2.6 (2.6.32-48squeeze7) CVE-2014-3153
On Mon, Jun 09, 2014 at 11:10:30PM +0200, Raphael Geissert wrote:
> On Monday 09 June 2014 17:32:15 Dominic Hargreaves wrote:
> [...]
> > I noticed that lts-needed.txt says:
> >
> > "Some packages are not tracked here:
> > - Linux kernel (tracking in kernel-sec repo)
> > "
> >
> > What is the kernel-sec repo and how does it related to the above?
>
> It refers to this:
> https://alioth.debian.org/projects/kernel-sec
>
> (the kernel security tracker)
Although in the case of Debian LTS we might just as well use the standard
file. I've removed the note.
(The reason we use kernel-sec for security.debian.org is because we also
care about various upstream long term kernels (3.2.x and 2.6.32.x, but
these are out of scope for Debian LTS).
Cheers,
Moritz
Reply to: