[Bug 1525927] Re: CVE-2015-0859 arbitrary code execution
Tyler Hicks
tyhicks at canonical.com
Thu Dec 17 18:08:25 UTC 2015
Hi Matt - Thanks for the bug report. Unfortunately, the debdiff is
simply the Debian debdiff and not a proper debdiff for the smokeping
packages in the various Ubuntu stable releases. This means that the
debdiff doesn't apply and, because of that, it means that there's been
no testing of this debdiff applied against the Ubuntu smokeping
packages.
Please see this wiki page for information on preparing a set of debdiffs
for Ubuntu:
https://wiki.ubuntu.com/SecurityTeam/UpdatePreparation#Packaging
Once that is done, please perform testing and then resubscribe ubuntu-
security-sponsors to this bug and set the status to 'NEW'. Also, please
mention the testing that you performed.
Thank you!
** Changed in: smokeping (Ubuntu)
Status: New => Incomplete
** Changed in: smokeping (Ubuntu)
Assignee: (unassigned) => Matt Johnston (matt-ucc)
** Tags added: patch-needswork
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1525927
Title:
CVE-2015-0859 arbitrary code execution
Status in smokeping package in Ubuntu:
Incomplete
Bug description:
It looks like the Ubuntu package needs the fix from
https://www.debian.org/security/2015/dsa-3405
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/smokeping/+bug/1525927/+subscriptions
More information about the Ubuntu-sponsors
mailing list