Hi,
according to the security tracker there are three CVEs[1] for dbus which
shall all affect Squeeze (DSA-2971-1).
As far as I understand CVE-2014-3532 is for kernels above 2.6.37-rc4 but
only 2.6.32 is in Squeeze.
The code that will be patched for CVE-2014-3533 is not available in
Squeeze.
So only CVE-2014-3477 remains which is marked as no-dsa.
Can somebody please confirm this?
Thorsten
[1] CVE-2014-3477, CVE-2014-3532, CVE-2014-3533
--
To UNSUBSCRIBE, email to debian-lts-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/alpine.deb.2.02.1407101951140.14...@jupiter.server.alteholz.net
