[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities

On Thu, Dec 11, 2008 at 12:11:05PM -0700, dann frazier wrote:
> On Thu, Dec 11, 2008 at 06:49:59PM +0000, Dominic Hargreaves wrote:

> > May I make a suggestion that you include a comment along these lines in
> > the advisory texts? It would help reassure users that things haven't been
> > forgotten about greatly.
> Yes, this has been a FAQ since the release of etchnhalf. I'll see
> about adding something to the text template. Does this look ok?
>   Debian 'etch' includes linux kernel packages based upon both the
>   2.6.18 and 2.6.24 linux releases.  All known security issues are
>   carefully tracked against both packages and both packages will
>   receive security updates until security support for Debian 'etch'
>   ceases. However, given the high frequency at which low-severity
>   security issues are discovered in the kernel and the resource
>   requirements of doing an update, non-critical 2.6.18 and 2.6.24
>   updates will typically release in a staggered or "leap-frog"
>   fashion.

That looks fine. Thanks for looking at this and all your kernel security
support work.


Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Reply to: