Comment 8 for bug 1795921
Revision history for this message
| Seth Arnold (seth-arnold) wrote Re: [jannh@google.com: [Bug 1796402] [NEW] systemd: reexec state injection: fgets() on overlong lines leads to line splitting] | #8 |
[I've expanded the Cc: list a bit to include Jann directly, and a
launchpad bug email address to Cc: Felix indirectly.]
On Tue, Oct 23, 2018 at 05:32:09PM +0200, Lennart Poettering wrote:
> Zbigniew has reviewed all three branches and only found nitpicks. I
> have fixed those in my local branch and added refs to the CVEs/bug
> reports to the commit msgs, as well as attribution to the original
> finders of the bugs.
>
> As mentioned Patryk Flykt (the original author of the dhcp6) code also
> reviewed the DHCPv6 side of things and is happy.
>
> This basically means we are all done from our side.
Excellent.
> I have not pushed my local updated brunches to github yet, since they
> would now make it very obvious that there's a security issue.
>
> If you are ready to go, give us a signal, and I'll push the branches,
> turn them into github PRs, and Zbigniew will merge them quickly after,
> which settles it from our side.
>
> Does that work for you?
>
> Waiting for a signal from you now,
I think the best course of action is for you to push your branches as
soon as it is convenient. We're not ready here, and I can't promise any
specific date when we might be ready.
So unless you've heard something from Jann or Felix that would caution
you to sit on this for a bit longer, I think it's time to go public.
I'll finish the MITRE paperwork tomorrow.
Thanks