VENOM
1853
Comment:
|
1851
|
Deletions are marked like this. | Additions are marked like this. |
Line 24: | Line 24: |
## <INCLUDE THIS SECTION IF NEW PUBLIC RELEASES FOR CLOUD IMAGES ARE NEEDED> | |
Line 25: | Line 26: |
<INCLUDE THIS SECTION IF NEW PUBLIC RELEASES FOR CLOUD IMAGES ARE NEEDED> |
<UPSTREAM NAME> <VULNERABILITY TYPE> in <CODE SECTION> (CVE-YYYY-NNNN [aka <NAME IN MEDIA>])
It was discovered that .... An attacker could use this issue to ..., resulting in ....
This issue was fixed in <UPSTREAM NAME> in <UPSTREAM VERSION>. Ubuntu <LIST OF UBUNTU VERSIONS> were affected. To address the issue, ensure that <source> <version> (Ubuntu <UBUNTU RELEASE>)... is/are installed. These updates were announced in USN XXX-N.
Timeline
YYYY MMM DD: <RECEIVED NOTIFICATION OF ISSUE>
YYYY MMM DD: <ISSUE BECAME PUBLIC>
YYYY MMM DD: <UPDATED UBUNTU DEBS BECAME AVAILABLE>
YYYY MMM DD: <UPDATED UBUNTU CLOUD IMAGES BECAME AVAILABLE>
Public Cloud Image updates
Amazon AWS: <IN PROGRESS>
Windows Azure: <IN PROGRESS>
Google Compute Engine: <IN PROGRESS>
Ubuntu Core Images: <IN PROGRESS>
Cloud Images dailies will start appearing within 4 hours of the USN announcement. At the direction of the security team, the Cloud Image Team will start manually releasing new images to the public cloud.
SecurityTeam/KnowledgeBase/VENOM (last edited 2015-05-14 06:19:56 by sbeattie)