On Tue, Jul 25, 2023 at 11:39:38PM +0200, Guilhem Moulin wrote:
>...
> The Security Team decided not to issue a DSA for that CVE, but it's now fixed
> in
> buster-security (2.2.1-3+deb10u1) as well as sid (2.17.1.1-2), so it makes
> sense
> to fix it via (o)s-pu too.
>...
In all 3 distributions this made libghc-{gitit,hakyll}-{dev,prof}
uninstallable due to changed libghc-pandoc-{dev,prof}-* provides, e.g.:
The following packages have unmet dependencies:
libghc-gitit-dev : Depends: libghc-pandoc-dev-2.17.1.1-35d44
For bullseye/bookworm this should be fixed with:
wb nmu gitit . ANY . bookworm . -m 'Rebuild against new pandoc'
wb nmu haskell-hakyll . ANY . bookworm . -m 'Rebuild against new pandoc'
wb nmu gitit . ANY . bullseye . -m 'Rebuild against new pandoc'
wb nmu haskell-hakyll . ANY . bullseye . -m 'Rebuild against new pandoc'
This might result in the Provides of libghc-{gitit,hakyll}-{dev,prof} changing,
but these are leaf packages.
cu
Adrian
