[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Anyone having more information about the tcpdump security CVEs?


Thank you for the information.

How to upload and issue a DLA is available here:

I can issue the DLA if you do the upload.

Are you sure the new tcpdump is backwards compatible?

Best regards

// Ola

On 28 January 2017 at 09:56, Romain Francoise <rfrancoise@debian.org> wrote:
> Hi,
> On Fri, Jan 27, 2017 at 10:25:42PM +0100, Ola Lundqvist wrote:
>> Do anyone have any reference to something that I can have a look at to
>> judge whether this package need an update in wheezy or not.
> It definitively needs an update, however you should be aware that for
> jessie the DSA will just update the package to the new upstream as we
> don't have broken-out patches for these vulnerabilities. I'm working on
> this right now.
> I can prepare packages for wheezy as well if you need, but I'm not yet
> familiar with how to get them uploaded to wheezy-lts.
> --
> Romain Francoise <rfrancoise@debian.org>
> http://people.debian.org/~rfrancoise/

 --- Inguza Technology AB --- MSc in Information Technology ----
/  ola@inguza.com                    Folkebogatan 26            \
|  opal@debian.org                   654 68 KARLSTAD            |
|  http://inguza.com/                Mobile: +46 (0)70-332 1551 |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /

Reply to: