*** This bug is a security vulnerability *** You have been subscribed to a public security bug by Seth Arnold (seth-arnold):
In the CVE tracker https://ubuntu.com/security/CVE-2022-2414 all recent Ubuntu releases are marked as "not vulnerable", I think this is wrong. We can see in the Debian tracker that the dogtag-pki *source* package is affected: https://security-tracker.debian.org/tracker/CVE-2022-2414 The dogtag-pki binary package is a metapackage, maybe that's why this slipped through? I suppose the vulnerable binary package is pki-core or similar. Anyhow, the "not vulnerable" status must be wrong. ** Affects: dogtag-pki (Ubuntu) Importance: Undecided Status: Fix Released -- CVE-2022-2414 not assigned/evaluated correctly https://bugs.launchpad.net/bugs/1987054 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
