Received: from cloud03.net4visions.de (cloud03.net4visions.de [168.119.227.151])
	by nld3-dev1.alpinelinux.org (Postfix) with ESMTPS id BC67C780772
	for <~alpine/users@lists.alpinelinux.org>; Tue, 25 Jan 2022 15:46:49 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=tower-net.de; h=
	content-transfer-encoding:content-type:content-type:mime-version
	:message-id:references:in-reply-to:subject:subject:from:from
	:date:date; s=20201123; t=1643125597; bh=yZl6eFsXnZ+EW+Fo4djQJuY
	16EjhldJguK2vsyFepek=; b=h6p3er5dDALLTGz0P3VUcFMfE3M/0RHcZy6x6FW
	9mn/z0uSZyQVVoCqTrGoWLpoEfNM+hb9owDb+3F5/DyhUmfJ21rFS4zRZRTGXq/W
	M0bkAn0gflqvH5xf3s0FFQai3wZiCKjMZ0xjL4Jr3aDc3/RVlOzAmWtxfc/8T7Hn
	0MU4LJhGgrVXY5PoKJNnj4H6bpKrafoVlDxzqFR3/g+xTRi+3mkVYZ7oDck57XPe
	tX/rU2Q1oJ/eXWEkRNwE08W1K6I3BT4ooNc6MITkcHdA6GpMNDeVjSAJgvbhwuDe
	6n9bbt77TYd20vy+0qzybZoC4Ehoa4LKx1aOqvNYh+r9Sx7sSHlWMMPMh/QVKWMq
	+NVLAQF2lLafDUBbcJSSAl+VmsZVglHgLfhBRMOBqLU2q62rLEtFurzY68+Q5eVd
	rJA5wleSiIuCUDOmtY6jhGWnBDac6HF68A5EYrM8Y4d9OwXsrdu+Xlw2AyBgyBjK
	vBt08OyEl5tBCVN04CkVOoMD5
Date: Tue, 25 Jan 2022 15:46:33 +0000
From: Markus Kolb <alpinelinux+usersml@tower-net.de>
To: Jakub Jirutka <jakub@jirutka.cz>, ~alpine/users@lists.alpinelinux.org,
 Paul <pgbakker@gmail.com>
Subject: Re: Alpine Linux affected by CVE-2022-0185?
In-Reply-To: <be9a4c70-e069-6d6d-732f-21fe72bf08dc@jirutka.cz>
References: <b66fba39-761d-91cc-d7ac-82500373b1eb@gmail.com> <F95680CA-A8F8-419C-9989-3521CA340EA9@tower-net.de> <be9a4c70-e069-6d6d-732f-21fe72bf08dc@jirutka.cz>
Message-ID: <E86FA38F-DBD3-475D-B84E-259581E019B9@tower-net.de>
MIME-Version: 1.0
Content-Type: multipart/alternative;
 boundary=----TK8LQ64QIDA3Q3LLSLGP9DLX422E3F
Content-Transfer-Encoding: 7bit
Autocrypt: addr=alpinelinux+usersml@tower-net.de; prefer-encrypt=mutual; keydata=
 mQINBFTq7DkBEAD0NQBCJ8f+cPWrh1sXOAD32exrvI9sKPa6R683/RYjviPc3CRlGfT1x37pEEiZ
 Fh+ow50ZuYl4QXzhJTY/oHi9Kkhv/k65Qz49YrGpXjFZJMUJxsfukOa/pCLgshdZ5+KbEmtPlJ/D
 +zfXdk6ceicTPZd4VJ7pAOoDpUMQhNnvb+zSNVMRmVmVKBpsDByqmh4OdmvfvN/AyK7TxFmBYp6A
 vTgdIxUxjwevXvWMcor4OFE9XwLtlSnsuT0aLal3W6Skz0NikeELnkObR9hykVUKQAk9+NsmxOEr
 eo7tzknv2w2ddtLx0i1ghYGo+KJgxKEKoYg2Kiuw+IzwjZggHbisuTbNXEra6D/jnGAh/NPUElMu
 /2HpgVUnlANjaLFyIClpjUI3sv1LlmeYPsOEHSoaXn8xw1jg1i/ZxJh2wslTIm2GwUnlPodUTkOW
 D2qPCubNWM1Ax8DZUcGGpMPgnN7JvTONFRHfIpjwtxWn/HbKjYaLh0Na68KLPHvIKozL0hm0ZNUR
 3rtgL1FjgyeA4gXQO2C9VkhEAoMpSeN0Xznr+vmyGS4qXhCE895+SBIg8OUfbMKx2OTISnSOnsJ2
 +oO7eneKlt5wsqtBVESOtemozHaAa6rCsF+8lRdhkFxZSwxX5RUfPkMqt33gk9h1D6kTX4ZlFt2O
 9HK0EpeD92SzbQARAQABtCFNYXJrdXMgS29sYiA8bWFya3VzQGtvbGJzLW5ldC5kZT6JAjoEEwEI
 ACQCGwMFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AFAlVS8mYCGQEACgkQPZkdrJmhi67LBRAAu3GK
 wp6XbrL4Q5/xChj+KFiUYx89sMYeoiZj46QLzwazy/ifZpc/2uVsXKTTzG2Ftkpx2WymzuWIAR7U
 FM9Jm43bsc8AYWvxccdKDtcDil1mRRTPkpiFGZbIxy7IBw8yxHHJoN1T+JB+R1FpZMLczmPrfMUS
 Ua+p/TU3lqugsayi/OeqN83F7qyX+FT1qmhzPQvZs/KjK3OYbOpwwGobdF2zU30q+Jt08YO0lU38
 vwKZPFxiG93DhYoW5jha/jIeiGfN42uMAq4mrL4vNIFbixz0tT21DNuBueaZmtKcj/VALwrvmoSr
 eGFXH+9G+luAYsj47nAPQd0jjOuYHG6n7tLg/Ij7gZbomN3sMsoPyIyc2sCbv7jjPrc2BHYHwlLr
 T3HNnDgNdfC9QSYy8v9BufAcpvxMuKyw4+RHeoUIO8oPHAlyo6pe1ddP/lDW0e7tTr2SRXk2YVee
 icpRou4nREgREaZjiil5sJvzru5XZjnp7PpQekZLVkqTPrwfSj/sWSORHHcDxW/kYgPoRp7NMnkS
 Vrq7mFdy6rKdNw5hYWxTYZx7iyKsYpDTnFV/KhwyZ9Or+HY+3QsGnAcZYy2Q2vEEd5KGN+Dmw5Kv
 UWyto6BcSr0esnwu80IIuK+v2Xns1c2tdB3hmD8bYyuFS8AWoqxymwCCfr5r28Nf72/GLbK5Ag0E
 VOrsOQEQANl0xTH9bVs79I5MvB+NeIITYHW0koUDuVJIRDyJHBhtP7YpjuYzOGMkFJEL4Oqqhxaa
 b+c/c3kLo8QhKpLnfHhd/XY6iqj0XF72MdJa3woWAUV7CkUIxDaU/YT5usSK5wUYp4pyaHgufP2C
 RyAca8nHjKPpuiY/Y9DPPe7bfNmqzmf1Kzij4ovB5j9PmTKY3qY+j/hZoSM+G+CIb01GhPyOykhx
 D6pIiVvUxaNCUQzn1Z1+QU4jDRYZLSHdkT+AYwVi4fIKNWaPPnRTeSdSO1lylqPn/7PXQp0O/8cp
 ucyfFN6jGk1ZXpj1SnVQ8UJoDQBFgQt4Py2XXE6dMczk7OkziO/1CJrOIPqX5GO4+lq3fzNXIrsp
 5vbOPzcxAMlolBucqnVTDW4EqiajGt2gJYOnG8uS48Vdo/clP6DxqGiuxsq5krz/gHvXIhj7XB1e
 hr/Xt8HUJ9csdvfPEKJ/eBVbNmpQlf+uVd6lyahVvi+It7xxlGrAN/Edey047ALjZHAQIoRggDLR
 Y/mJFaNpuYt8ul5/Jt5Cqjl13+XjgH3TPcbRdbGqDPE42aqZiTJSQPiA4jUWUYdF6+a8kdD4cLiy
 x8Px7NnmRJElbRoyKyy9scRvXy5ReMZwVKspz77JTGlS2cPHc+XSLYwwA9PXT89XJcNFkOT/scHc
 1+7wmsCdABEBAAGJAh8EGAEIAAkFAlTq7DkCGwwACgkQPZkdrJmhi667rw/+JtHpUtJl/cpayHuF
 l9BYD/8USGtisMyS2jYiQaGuGcx9Ekn/6GGhCFWrqlSbs/hZYPeylYsBxPwKtDelAr2s/d5UNjSl
 F13DUm5AJAp4a+zmiee1/3c3ok68wF9mk/ADwHtLUEIztnMPOs9HpuEY3loMTAT4gDkrgOkkECAs
 GY/9tgic8sJSlB4AKylpHKuofX3j6Jw4GdGouPFfVaTowUHjotmax1sdtP5SEFd+bIhlimE3L03O
 Ev84pYnii2VQKt7XUcbEsGwD+5ETNiC9SvP+NPRDVV12zwwuwYPN8ZX8AobRtzAs72D/2isKPd2y
 /rFpwqk+g6Nc63P27yjHlU7fXsLfa/24yWw47KwSYbjckBj+l1uYjgDDxXqSWLgcXqN3OCLzONe6
 XonWSkd5ion6yAygy0Kz+QoSZ5KNIASW72sEG9sEHhU8AF36dBVmuiYm+bN5TJPvzH0am0l6h8Ss
 Cx8lRsffRicQzolLwkZeaSJrVHPkghdjzIOFZqzw15R33mcQjJkoZgi3dXsUREad+Q00fj/ZlhVV
 TdavFIZY/R1MAjAmzz9SIJtZySywIXtE+yu1YZ9MyWXqJG1/LYOdP6PsWgzS3dwImuKMQUxWl6bX
 fzk/bvGxEe9C3SlEJdf5yUQTLpGnFTKGj8Oh8UsjPD5wTMcyCVdRiapHiFs=

------TK8LQ64QIDA3Q3LLSLGP9DLX422E3F
Content-Type: text/plain;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable

Am 25=2E Januar 2022 14:24:17 UTC schrieb Jakub Jirutka <jakub@jirutka=2Ecz=
>:
>> But I've provided some months ago a patch for a security related issue =
and never got an answer=2E
>
>Can you please provide a link to your merge request on https://gitlab=2Ea=
lpinelinux=2Eorg that were closed without answer?
>
>Thanks,
>Jakub J=2E
>
>On 1/25/22 2:42 PM, Markus Kolb wrote:
>> It is kernel 5=2E15=2E15 and patched is the vuln in 5=2E15=2E16=2E So y=
es=2E
>> Looks like the maintenance becomes somewhat resource limited=2E
>> But I've provided some months ago a patch for a security related issue =
and never got an answer=2E So looks like they don't want to have additional=
 man power=2E The issue has been closed some weeks later with providing a n=
ew package=2E So somewhat questioning what is going on=2E
>

https://lists=2Ealpinelinux=2Eorg/~alpine/aports/patches/3549
------TK8LQ64QIDA3Q3LLSLGP9DLX422E3F
Content-Type: text/html;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable

<html><head></head><body><div class=3D"gmail_quote">Am 25=2E Januar 2022 14=
:24:17 UTC schrieb Jakub Jirutka &lt;jakub@jirutka=2Ecz&gt;:<blockquote cla=
ss=3D"gmail_quote" style=3D"margin: 0pt 0pt 0pt 0=2E8ex; border-left: 1px s=
olid rgb(204, 204, 204); padding-left: 1ex;">
<pre dir=3D"auto" class=3D"k9mail"><blockquote class=3D"gmail_quote" style=
=3D"margin: 0pt 0pt 1ex 0=2E8ex; border-left: 1px solid #729fcf; padding-le=
ft: 1ex;">But I've provided some months ago a patch for a security related =
issue and never got an answer=2E<br></blockquote><br>Can you please provide=
 a link to your merge request on <a href=3D"https://gitlab=2Ealpinelinux=2E=
org">https://gitlab=2Ealpinelinux=2Eorg</a> that were closed without answer=
?<br><br>Thanks,<br>Jakub J=2E<br><br>On 1/25/22 2:42 PM, Markus Kolb wrote=
:<br><blockquote class=3D"gmail_quote" style=3D"margin: 0pt 0pt 1ex 0=2E8ex=
; border-left: 1px solid #729fcf; padding-left: 1ex;">It is kernel 5=2E15=
=2E15 and patched is the vuln in 5=2E15=2E16=2E So yes=2E<br>Looks like the=
 maintenance becomes somewhat resource limited=2E<br>But I've provided some=
 months ago a patch for a security related issue and never got an answer=2E=
 So looks like they don't want to have additional man power=2E The issue ha=
s been closed some weeks later with providing a new package=2E So somewhat =
questioning what is going on=2E<br></blockquote><br></pre></blockquote></di=
v><br clear=3D"all"><a href=3D"https://lists=2Ealpinelinux=2Eorg/~alpine/ap=
orts/patches/3549">https://lists=2Ealpinelinux=2Eorg/~alpine/aports/patches=
/3549</a></body></html>
------TK8LQ64QIDA3Q3LLSLGP9DLX422E3F--