On Sun, Dec 21, 2014 at 12:15 AM, Michael Gilbert wrote:
> Those are included in the LTS update, and I think they really need to
> be included in exp/unstable also.
Hi,
I uploaded an nmu with the mentioned changes to unstable. Please see
attached patch.
Best wishes,
Mike
diff -Nru cpio-2.11+dfs
On Sat, Dec 20, 2014 at 11:34 PM, Michael Gilbert wrote:
> On Fri, Dec 12, 2014 at 7:16 AM, Aníbal Monsalve Salazar wrote:
>> I uploaded cpio 2.11+dfsg-3 to experimental with the upstream patches
>> listed above. Please test it. It didn't segfault when I run it on amd64
>> as reported in Red Hat's
control: reopen -1
On Sat, Dec 20, 2014 at 11:34 PM, Michael Gilbert wrote:
> In the meantime, I'm going to prepare the wheezy DSA.
While preparing it, I noticed that there are a couple commits missing
from the experimental package, commits fd262d11 and f6a8a2cb:
https://security-tracker.debian.o
Processing control commands:
> reopen -1
Bug #772793 {Done: Raphaël Hertzog } [cpio] cpio:
CVE-2014-9112
'reopen' may be inappropriate when a bug has been closed with a version;
all fixed versions will be cleared, and you may need to re-add them.
Bug reopened
No longer marked as fixed in versions
On Fri, Dec 12, 2014 at 7:16 AM, Aníbal Monsalve Salazar wrote:
> I uploaded cpio 2.11+dfsg-3 to experimental with the upstream patches
> listed above. Please test it. It didn't segfault when I run it on amd64
> as reported in Red Hat's Bugzilla.
Hi,
I tested the update, and it seems to work fine
Hi,
On Fri, 12 Dec 2014, Aníbal Monsalve Salazar wrote:
> I uploaded cpio 2.11+dfsg-3 to experimental with the upstream patches
> listed above. Please test it. It didn't segfault when I run it on amd64
> as reported in Red Hat's Bugzilla.
You need to use dh_autoreconf (dh --with autoreconf) if yo
On Fri, 12 Dec 2014, Aníbal Monsalve Salazar wrote:
> >> Patches:
> >> http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=746f3ff6
> >> http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=54d1c42a
> >> http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=58df4f1b
> >
> > There seem to be additi
On Fri, 2014-12-12 10:41:50 +0100, Salvatore Bonaccorso wrote:
> Hi,
>
> On Thu, Dec 11, 2014 at 07:15:17AM +0100, Moritz Muehlenhoff wrote:
>> Package: cpio
>> Severity: grave
>> Tags: security
>>
>> Hi,
>> please see http://seclists.org/fulldisclosure/2014/Nov/74
>> for the original report.
>>
Hi,
On Thu, Dec 11, 2014 at 07:15:17AM +0100, Moritz Muehlenhoff wrote:
> Package: cpio
> Severity: grave
> Tags: security
>
> Hi,
> please see http://seclists.org/fulldisclosure/2014/Nov/74
> for the original report.
>
> Patches:
> http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=746f3ff6
>
Package: cpio
Severity: grave
Tags: security
Hi,
please see http://seclists.org/fulldisclosure/2014/Nov/74
for the original report.
Patches:
http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=746f3ff6
http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=54d1c42a
http://git.savannah.gnu.org/cgit
10 matches
Mail list logo
