Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian

To: debian-security@lists.debian.org
Subject: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
From: Andrew McGlashan <andrew.mcglashan@affinityvision.com.au>
Date: Sun, 28 Sep 2014 06:33:13 +1000
Message-id: <[🔎] 54271F09.8010109@affinityvision.com.au>
In-reply-to: <[🔎] 542701F8.3030901@fileserver.v6.amspitz.at>
References: <[🔎] CA+koCTVS3VmgVUwqb--OYWs_jG7B4kG8XZa1Djto-6ri1YrdgA@mail.gmail.com> <[🔎] 542701F8.3030901@fileserver.v6.amspitz.at>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 28/09/2014 4:29 AM, Martin Holub wrote:
> Please according to the Security Tracker [1,2] booth are fixed in stable
> and oldstable.

NOT QUITE ..... fixed in stable [wheezy]
  and "oldstable-LTS" [squeeze-lts] ....


  BUT NOT  oldstable  [squeeze] it is NOT fixed,
  nor is it still supported.  :(

Cheers
A.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)

iF4EAREIAAYFAlQnHwcACgkQqBZry7fv4vvwvwEAvyOLseQFtGPpRVgKACCMJLz0
TDB8s+yhSRm1B6hF7N8A/2EtYBzUYE27bOiJPy5Wd9v2hf6K1iZNBnhnOhp8gpS6
=CYzm
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: Conrad Nelson <yaro@marupa.net>
- Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: Joe <joe@jretrading.com>
- AW: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: Denny Bortfeldt <d.bortfeldt@babiel.com>

References:
- Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: john <lists.john@gmail.com>
- Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: Martin Holub <lumpi@fileserver.v6.amspitz.at>

Prev by Date: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Next by Date: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Previous by thread: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Next by thread: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Index(es):
- Date
- Thread