On Fri, Jan 29, 2016 at 02:28:02PM +0100, Guido Günther wrote: > Hi, > On Thu, Jan 28, 2016 at 07:27:20PM +0100, Moritz Mühlenhoff wrote: > > On Sat, Jan 23, 2016 at 02:22:22PM +0100, Guido Günther wrote: > > > Hi, > > > > > > now that Wheezy LTS is approaching I wondered what would be the best > > > places to help out fixing issues in Wheezy so that upgrading from > > > Squeeze to Wheezy would not introduce new security issues. > > > > > > Therefore I added bin/lts-needs-forward-port.py (based on > > > lts-cve-triage.py) that lists issues fixed in Squeeze that are unfixed > > > or marked no-dsa in wheezy. O.k. to apply? > > > > That should also parse next-oldstable-point-update.txt, since several of > > those are likely scheduled for the next whezy point release. > > Good point - I didn't even know about that file. New version > attached. > > The CVE-<number>-XXXX issues in are problematic since they're not unique > so we have some fuzziness there until the issues get updated. > > Am I reading the SVN logs correctly that they are currently hand > maintained? If so should one add user tags when filing bugs about this > to release.debian.org so it gets easier to track.
Pushed now. I'm still happy about any comments so we can improve this further iff needed. Cheers, -- Guido
