[Bug 1224999] Re: apt-check fails to see security updates in some circumstances

ski 1224999 at bugs.launchpad.net
Thu Sep 19 14:03:01 UTC 2013 

Thanks, that did the trick, even with an old version of linux-image-
server:

ski at nkrumah:/tmp$ wget http://security.ubuntu.com/ubuntu/pool/main/l/linux-meta/linux-image-server_3.2.0.23.25_amd64.deb
--2013-09-19 09:58:55--  http://security.ubuntu.com/ubuntu/pool/main/l/linux-meta/linux-image-server_3.2.0.23.25_amd64.deb
Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.92.190, 91.189.92.184, 91.189.92.181, ...
Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.92.190|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 2494 (2.4K) [application/x-debian-package]
Saving to: `linux-image-server_3.2.0.23.25_amd64.deb'

100%[===================================================================================================================================>]
2,494       --.-K/s   in 0.001s

2013-09-19 09:58:55 (2.91 MB/s) - `linux-image-
server_3.2.0.23.25_amd64.deb' saved [2494/2494]

ski at nkrumah:/tmp$ sudo dpkg -i linux-image-server_3.2.0.23.25_amd64.deb 
Selecting previously unselected package linux-image-server.
(Reading database ... 45479 files and directories currently installed.)
Unpacking linux-image-server (from linux-image-server_3.2.0.23.25_amd64.deb) ...
Setting up linux-image-server (3.2.0.23.25) ...
ski at nkrumah:/tmp$ dpkg -l | grep linux
ii  libselinux1                          2.1.0-4.1ubuntu1                  SELinux runtime shared libraries
ii  linux-firmware                       1.79.6                            Firmware for Linux kernel drivers
ii  linux-image-3.2.0-23-generic         3.2.0-23.36                       Linux kernel image for version 3.2.0 on 64 bit x86 SMP
ii  linux-image-server                   3.2.0.23.25                       Linux kernel image on Server Equipment.
ii  linux-libc-dev                       3.2.0-53.81                       Linux Kernel Headers for development
ii  util-linux                           2.20.1-1ubuntu3                   Miscellaneous system utilities
ii  util-linux-locales                   2.20.1-1ubuntu3                   Locales files for util-linux
ski at nkrumah:/tmp$ sudo apt-get update ; sudo apt-get --no-act dist-upgrade
[snip]
Fetched 3,468 kB in 9s (362 kB/s)                                                                                                                                           
Reading package lists... Done
Reading package lists... Done
Building dependency tree       
Reading state information... Done
Calculating upgrade... Done
The following NEW packages will be installed:
  linux-image-3.2.0-53-generic
The following packages will be upgraded:
  linux-image-server
1 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
Inst linux-image-3.2.0-53-generic (3.2.0-53.81 Ubuntu:12.04/precise-updates [amd64])
Inst linux-image-server [3.2.0.23.25] (3.2.0.53.63 Ubuntu:12.04/precise-updates [amd64])
Conf linux-image-3.2.0-53-generic (3.2.0-53.81 Ubuntu:12.04/precise-updates [amd64])
Conf linux-image-server (3.2.0.53.63 Ubuntu:12.04/precise-updates [amd64])
ski at nkrumah:/tmp$ /usr/lib/update-notifier/apt-check --human-readable ; echo
2 packages can be updated.
2 updates are security updates.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to update-notifier in Ubuntu.
https://bugs.launchpad.net/bugs/1224999

Title:
  apt-check fails to see security updates in some circumstances

Status in “update-notifier” package in Ubuntu:
  Incomplete

Bug description:
  Running 12.04LTS with an old kernel package, apt-check fails to tell
  me that I am running a vulnerable kernel:

  ski at nkrumah:~$ dpkg -l | grep linux-image ; cat /proc/version ; /usr/lib/update-notifier/apt-check --human-readable ; echo
  ii  linux-image-3.2.0-23-generic         3.2.0-23.36                       Linux kernel image for version 3.2.0 on 64 bit x86 SMP
  Linux version 3.2.0-23-generic (buildd at crested) (gcc version 4.6.3 (Ubuntu/Linaro 4.6.3-1ubuntu4) ) #36-Ubuntu SMP Tue Apr 10 20:39:51 UTC 2012
  3 packages can be updated.
  0 updates are security updates.

  ski at nkrumah:~$ dpkg -l | grep linux-image ; cat /proc/version ; /usr/libnotifier/apt-check -p ; echo
  ii  linux-image-3.2.0-23-generic         3.2.0-23.36                       Linux kernel image for version 3.2.0 on 64 bit x86 SMP
  Linux version 3.2.0-23-generic (buildd at crested) (gcc version 4.6.3 (Ubuntu/Linaro 4.6.3-1ubuntu4) ) #36-Ubuntu SMP Tue Apr 10 20:39:51 UTC 2012
  libx11-data
  tzdata
  libx11-6

  here is one such security bug affecting 3.2.0-23, i'd bet there are others:
    http://www.ubuntu.com/usn/usn-1929-1/

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/update-notifier/+bug/1224999/+subscriptions

More information about the foundations-bugs mailing list