Re: Firmware-nonfree update for buster?

To: Ola Lundqvist <ola@inguza.com>
Cc: debian-kernel@lists.debian.org, Debian LTS <debian-lts@lists.debian.org>
Subject: Re: Firmware-nonfree update for buster?
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Mon, 17 May 2021 12:43:26 +0200
Message-id: <[🔎] 20210517104326.a2rmzhdowtevlb6i@inutil.org>
In-reply-to: <[🔎] CABY6=0=Y3Z7g39x5LCSNnzec05JsvEQOeruuQsbmo6Thb+iAxQ@mail.gmail.com>
References: <[🔎] CABY6=0=Y3Z7g39x5LCSNnzec05JsvEQOeruuQsbmo6Thb+iAxQ@mail.gmail.com>

On Mon, May 17, 2021 at 11:54:05AM +0200, Ola Lundqvist wrote:
> Hi firmware-nonfree maintainers
> 
> I have a question from an LTS perspective about the possible security
> updates we have for the firmware-nonfree package.
> 
> You can find them here:
> https://security-tracker.debian.org/tracker/source-package/firmware-nonfree

Did you even look at the CVEs in question? CVE-2020-1236[2,3,4] need
a kernel patch to actually allow to use the new firmware and that patch
isn't present in 4.19 (and ofc also not in 4.9)

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: Firmware-nonfree update for buster?
  - From: Ola Lundqvist <ola@inguza.com>

References:
- Firmware-nonfree update for buster?
  - From: Ola Lundqvist <ola@inguza.com>

Prev by Date: Re: Best way forward for CVE-2021-22876/curl?
Next by Date: Re: Upgrade problems from LTS -> LTS+1
Previous by thread: Firmware-nonfree update for buster?
Next by thread: Re: Firmware-nonfree update for buster?
Index(es):
- Date
- Thread