Re: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)

To: debian-lts@lists.debian.org
Cc: pkg-virtualbox-devel@lists.alioth.debian.org
Subject: Re: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)
From: Holger Levsen <holger@layer-acht.org>
Date: Mon, 18 May 2015 14:49:18 +0200
Message-id: <[🔎] 201505181449.31880.holger@layer-acht.org>
In-reply-to: <[🔎] 20150518110126.GA2958@orkisz>
References: <[🔎] 20150518110126.GA2958@orkisz>

Hi,

adding the virtualbox maintainers to cc: :)

On Montag, 18. Mai 2015, Marcin Szewczyk wrote:
> is there going to be a security update to the squeeze-lts Virtualbox?

from IRC:

<h01ger> the debian-security-support package will tell you if a package is 
end-of-life in a distro
<h01ger> virtualbox wasnt part of squeeze
<h01ger> virtualbox is only in squeeze-backports, for that you need to ask the 
maintainer, but backports are generally asked to be security supported
<h01ger> so, yes, virtualbox-ose should be supported
<h01ger> (i have no idea atm if this is practical...)
<h01ger> https://www.virtualbox.org/wiki/Download_Old_Builds_3_2 doesnt have 
an updated for venom yet, but           
https://www.virtualbox.org/wiki/Download_Old_Builds says 3.2 is still 
supported...

Please reply if there are patches "somewhere".


cheers,
	Holger

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

Follow-Ups:
- Re: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)
  - From: Marcin Szewczyk <Marcin.Szewczyk@wodny.org>

References:
- Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)
  - From: Marcin Szewczyk <Marcin.Szewczyk@wodny.org>

Prev by Date: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)
Next by Date: Re: Bug#773834: Preparing a release for stable and lts
Previous by thread: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)
Next by thread: Re: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)
Index(es):
- Date
- Thread