Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian

To: debian-security@lists.debian.org
Subject: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
From: Joe <joe@jretrading.com>
Date: Sat, 27 Sep 2014 21:58:55 +0100
Message-id: <[🔎] 20140927215855.6a10fca8@jresid.jretrading.com>
In-reply-to: <[🔎] 54271F09.8010109@affinityvision.com.au>
References: <[🔎] CA+koCTVS3VmgVUwqb--OYWs_jG7B4kG8XZa1Djto-6ri1YrdgA@mail.gmail.com> <[🔎] 542701F8.3030901@fileserver.v6.amspitz.at> <[🔎] 54271F09.8010109@affinityvision.com.au>

On Sun, 28 Sep 2014 06:33:13 +1000
Andrew McGlashan <andrew.mcglashan@affinityvision.com.au> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
> 
> On 28/09/2014 4:29 AM, Martin Holub wrote:
> > Please according to the Security Tracker [1,2] booth are fixed in
> > stable and oldstable.
> 
> NOT QUITE ..... fixed in stable [wheezy]
>   and "oldstable-LTS" [squeeze-lts] ....
> 
> 
>   BUT NOT  oldstable  [squeeze] it is NOT fixed,
>   nor is it still supported.  :(
> 
But just add the right incantations to sources.list and all will be
well.

-- 
Joe

Reply to:

References:
- Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: john <lists.john@gmail.com>
- Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: Martin Holub <lumpi@fileserver.v6.amspitz.at>
- Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
  - From: Andrew McGlashan <andrew.mcglashan@affinityvision.com.au>

Prev by Date: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Next by Date: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Previous by thread: Re: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Next by thread: AW: Shellshock: Has CVE-2014-7186 and CVE-2014-7187 been addressed for debian
Index(es):
- Date
- Thread