On 12/17/2013 02:41 PM, Yves-Alexis Perez wrote: > On Tue, Dec 17, 2013 at 10:41:54AM +0800, Thomas Goirand wrote: >> Hi, > >> I've got all of the OpenStack 2013.2.1 ready, and they fix a bunch of >> CVE, but I can't upload because of python-iso8601 is still 0.1.4, and I >> need 0.1.8. I have opened #732284. Do you think that in such case, it is >> acceptable to NMU the update in the delayed/2 queue, if I get no reply >> from Benjamin Mako Hill, the python-iso8601 maintainer? > > Are those embargoed CVEs? It seems that OpenStack 2013.2.1 is publicly > released, so maybe it'd help to add that to the bug report to state the > urgency publicly? (I guess you already did that on your private mail to > Benjamin?) > > Also debdiff doesn't include diff from outside the debian/ folder so > it's a bit harder to see the impact of new upstream release. > > Regards, >
Here's the full debdiff. Thomas
python-iso8601_0.1.8-0.1.full.debdiff.gz
Description: GNU Zip compressed data
