[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Virtualbox 3.2 update due to CVE-2015-3456 (VENOM)


adding the virtualbox maintainers to cc: :)

On Montag, 18. Mai 2015, Marcin Szewczyk wrote:
> is there going to be a security update to the squeeze-lts Virtualbox?

from IRC:

<h01ger> the debian-security-support package will tell you if a package is 
end-of-life in a distro
<h01ger> virtualbox wasnt part of squeeze
<h01ger> virtualbox is only in squeeze-backports, for that you need to ask the 
maintainer, but backports are generally asked to be security supported
<h01ger> so, yes, virtualbox-ose should be supported
<h01ger> (i have no idea atm if this is practical...)
<h01ger> https://www.virtualbox.org/wiki/Download_Old_Builds_3_2 doesnt have 
an updated for venom yet, but           
https://www.virtualbox.org/wiki/Download_Old_Builds says 3.2 is still 

Please reply if there are patches "somewhere".


Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to: