[Openstack-operators] Venom vulnerability

James Page james.page at ubuntu.com
Thu May 14 15:48:21 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi Basil

On 14/05/15 16:04, Basil Baby wrote:
> I can see the patch for CVE-2015-3456 updated to qemu-kvm package
> on Precise - Icehouse branch. 
> https://launchpad.net/~ubuntu-cloud-archive/+archive/ubuntu/icehouse-s
taging/+build/7425816
>
> 
<https://launchpad.net/%7Eubuntu-cloud-archive/+archive/ubuntu/icehouse-
staging/+build/7425816>
> 
> But, on precise-havana it is not yet updated. (Latest available is
> https://launchpad.net/~ubuntu-cloud-archive/+archive/ubuntu/havana-sta
ging/+build/5955528
>
> 
<https://launchpad.net/%7Eubuntu-cloud-archive/+archive/ubuntu/havana-st
aging/+build/5955528>)
> Is there a plan to update the package ?

The Havana Cloud Archive pocket was EOL in July last year, so won't
receive any update for this vulnerability.  Icehouse is the oldest
supported release on 12.04 in the Cloud Archive.

Sorry - probably not the answer you wanted.

Regards

James

- -- 
James Page
Ubuntu and Debian Developer
james.page at ubuntu.com
jamespage at debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=fZju
-----END PGP SIGNATURE-----



More information about the OpenStack-operators mailing list