Re: [CentOS-devel] Do we know the reason why this below listed CVEs will not be fixed For elfutils-libelf, elfutils-libs and elfutils pakages ?

29 Jun 2018


      On Fri, Jun 29, 2018 at 05:43:04AM +0000, Veetil, Vyshnav wrote:
...
Do we know the reason why this below listed CVEs will not be fixed
For elfutils-libelf,elfutils-libs and elfutils pakages ?
1.CVE-2017-7607
2.CVE-2017-7608
3.CVE-2017-7609
4.CVE-2017-7610
5.CVE-2017-7611
6.CVE-2017-7612
7.CVE-2017-7613
Probably because they are all marked as Low impact.  Past that you will
need to ask Redhat as the project only rebuilds upstream sources.
John
-- 
The best inheritance a parent can give to his children is a few minutes of
their time each day.

-- Orlando Aloysius Battista (1917-1995), Canadian-American chemist and author

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Re: [CentOS-devel] Do we know the reason why this below listed CVEs will not be fixed For elfutils-libelf, elfutils-libs and elfutils pakages ?