[Bug 1891061] Re: SRU: Bootable buildd images boot vulnerable kernels

[Launchpad Bug Tracker]

This bug was fixed in the package livecd-rootfs - 2.525.47

---------------
livecd-rootfs (2.525.47) bionic; urgency=medium

  * Apparently the lxd appliance needs to use a custom track (4.0) and since
    model assertions do not accept track names in required-snaps, we need to do
    this by hand during build. (LP: #1891505)

 -- Łukasz 'sil2100' Zemczak <lukasz.zemczak at ubuntu.com>  Wed, 12 Aug
2020 15:58:19 +0200

** Changed in: livecd-rootfs (Ubuntu Bionic)
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to livecd-rootfs in Ubuntu.
https://bugs.launchpad.net/bugs/1891061

Title:
  SRU: Bootable buildd images boot vulnerable kernels

Status in livecd-rootfs package in Ubuntu:
  Fix Released
Status in livecd-rootfs source package in Xenial:
  New
Status in livecd-rootfs source package in Bionic:
  Fix Released
Status in livecd-rootfs source package in Focal:
  Fix Released

Bug description:
  [Impact]

   * Bootable buildd images are currently built from the -release pocket only,
     leaving them vulnerable to issues fixed by -updates and/or -security.

   * MP: #387164 [1] should be backported to ensure updated packages are used
     when building the bootable buildd images.

  [Test Case]

   * Inspect package manifest for bootable buildd images; verify outdated versions
     of packages

  [Regression Potential]

   * updated packages could break current assumptions for bootable buildd images, and cause
     boot or runtime failures, though this has not been seen in testing.

  1. https://code.launchpad.net/~codyshepherd/livecd-rootfs/+git/livecd-
  rootfs/+merge/387164

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/livecd-rootfs/+bug/1891061/+subscriptions