On Sat, Jun 21, 2014 at 04:11:10PM +0100, Adam D. Barratt wrote: > Control: tags -1 + wheezy confirmed > Control: clone -1 -2 > Control: retitle -2 pu: package libjpeg62/6b1-3 > > On Sat, 2014-06-21 at 16:57 +0200, Bill Allombert wrote: > > I have been requested by the security team to update libjpeg8 and libjpeg6b1 > > in stable to fix CVE-2013-6629 and CVE-2013-6630. (see #729867). > > In that case there need to be two bugs; cloning. > > > The fix is available in version 8d-2 and 6b1-4 in testing which are > > otherwise identical to version 8d-1 and 6b1-3 in stable. > > I join the debdiff. > > > > Please advise to proper procedure for upload. > > Please version the packages as 8d-1+deb7u1 / 6b1-3+deb7u1, use "wheezy" > as the changelog distribution, build the packages on a wheezy system or > suitable chroot and upload; thanks.
OK, I have uploaded 8d-1+deb7u1. Could you check I did not make anything wrong before I upload 6b1-3+deb7u1 ? Cheers, -- Bill. <ballo...@debian.org> Imagine a large red swirl here. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140621170414.GA17522@yellowpig
