Autore: anonym Data: To: The Tails public development discussion list Oggetto: Re: [Tails-dev] Upgrading the Linux kernel for 1.0?
09/04/14 20:24, intrigeri wrote: > Hi,
>
> David Goulet wrote (09 Apr 2014 17:51:22 GMT) :
>> Here is my analysis of CVE-2014-2568 and CVE-2014-0131 in terms of
>> security severity for Tails.
>
> Thanks a lot!
>
> My temporary conclusion is: not worth taking the risk of introducing
> regressions with a kernel update in Tails 1.0, but I'll let the
> current release manager make the final decision based on all these
> facts, and whatever time he has to deal with the potential fallout.
Given David's analysis I, as the release manager, feel that the safer
choice is to leave the kernel at the current version, since kernel
regressions tend to be subtle and not always exposed on the hardware we
have access to during testing.