Marc Deslauriers: It is better to have a secure system than a compromised system with WMV+sound. In general reverting a security fix because of functionality regression is insane.
I trust you had some reason, for example:
- the original CVE-2009-46XX/security-issue22.patch in fact did not fix security bug (or any bug) or
- the security bug is unlikely to be exploitable or
- the bug is not exploitable if patches 01 to 21 remain applied or
- the code is exploitable but it runs in sandbox therefore no real harm is done
I suggest putting a rationale in an update next time.
Marc Deslauriers: It is better to have a secure system than a compromised system with WMV+sound. In general reverting a security fix because of functionality regression is insane. 46XX/security- issue22. patch in fact did not fix security bug (or any bug) or
I trust you had some reason, for example:
- the original CVE-2009-
- the security bug is unlikely to be exploitable or
- the bug is not exploitable if patches 01 to 21 remain applied or
- the code is exploitable but it runs in sandbox therefore no real harm is done
I suggest putting a rationale in an update next time.
For those interested the patch is bazaar. launchpad. net/~ubuntu- branches/ ubuntu/ karmic/ ffmpeg/ karmic- security/ revision/ 39
http://
(Launchpad unfortunately does not link commits to bugs.)