Comment 29 for bug 1648806
Revision history for this message
| Steve Beattie (sbeattie) wrote Re: [Bug 1648806] Re: Arbitrary code execution through crafted CrashDB or Package/Source fields in .crash files | #29 |
On Wed, Dec 14, 2016 at 07:17:15AM -0000, Donncha O Cearbhaill wrote:
> Steve: Yes a CRD of 22:00 UTC today December 14th works for me.
>
> Can you link to https:/
> in the notification as it provides more information. That post will be
> published at 22:00 UTC. Thanks for you speed in getting this released.
We don't include external references in the announcements themselves;
however, I'll ensure a reference to your blog post is included with
each of the CVE entries in the Ubuntu Security Team's CVE tracker,
now that Mitre has assigned CVEs. The CVE entries are linked from
the USN, so it'll still be findable for anyone who researches the
specific issues.
Thanks!
--
Steve Beattie
<email address hidden>
http://