Re: qemu: CVE-2016-7116

To: Hugo Lefeuvre <hle@debian.org>
Cc: debian-lts@lists.debian.org
Subject: Re: qemu: CVE-2016-7116
From: Thorsten Alteholz <debian@alteholz.de>
Date: Sun, 4 Sep 2016 17:23:40 +0200 (CEST)
Message-id: <[🔎] alpine.DEB.2.02.1609041718450.30295@jupiter.server.alteholz.net>
In-reply-to: <[🔎] 20160904112556.oocrabkpcwhbjnr3@hle.local>
References: <[🔎] 20160902101216.ehmavdmk747yyvih@hle.local> <[🔎] 20160903155500.pdf6v7xwrgvpzaf2@bogon.m.sigxcpu.org> <[🔎] 20160904112556.oocrabkpcwhbjnr3@hle.local>

Hi Hugo,

are you aware that this CVE is marked as <no-dsa> in Jessie and soon willbe in Wheezy as well.

So unless you disagree with this <no-dsa>, it would be better toavoid any potential regression and not upload qemu or qemu-kvm.


 Thorsten

Reply to:

Follow-Ups:
- Re: qemu: CVE-2016-7116
  - From: Guido Günther <agx@sigxcpu.org>

References:
- qemu: CVE-2016-7116
  - From: Hugo Lefeuvre <hle@debian.org>
- Re: qemu: CVE-2016-7116
  - From: Guido Günther <agx@sigxcpu.org>
- Re: qemu: CVE-2016-7116
  - From: Hugo Lefeuvre <hle@debian.org>

Prev by Date: Re: qemu: CVE-2016-7116
Next by Date: Re: qemu: CVE-2016-7116
Previous by thread: Re: qemu: CVE-2016-7116
Next by thread: Re: qemu: CVE-2016-7116
Index(es):
- Date
- Thread