cacti & LTS

2016-04-30 Thread Paul Gevers
Hi all, Just in case somebody starts working on it, I'd like to review proposed uploads of cacti to LTS. CVE-2016-2313 was initially wrongly fixed (a sledgehammer for a simple nail). CVE-2016-3659 still needs reproducing in Debian and a check if the fix by a contributer in the upstream bug report

Re: Wheezy update of subversion?

2016-04-30 Thread James McCoy
On Fri, Apr 29, 2016 at 10:32:22AM +0200, Santiago Ruano Rincón wrote: > Hello dear maintainer(s), > > the Debian LTS team would like to fix the security issues which are > currently open in the Wheezy version of subversion: > https://security-tracker.debian.org/tracker/CVE-2016-2167 > https://sec

Re: Wheezy update of quagga?

2016-04-30 Thread Florian Weimer
* Santiago Ruano Rincón: > the Debian LTS team would like to fix the security issues which are > currently open in the Wheezy version of quagga: > https://security-tracker.debian.org/tracker/source-package/quagga > > Would you like to take care of this yourself? I suggest to wait until upstream h

Wheezy update of quagga?

2016-04-30 Thread Santiago Ruano Rincón
Hello dear maintainer(s), the Debian LTS team would like to fix the security issues which are currently open in the Wheezy version of quagga: https://security-tracker.debian.org/tracker/source-package/quagga Would you like to take care of this yourself? If yes, please follow the workflow we have

Wheezy update of openafs?

2016-04-30 Thread Santiago Ruano Rincón
Hello dear maintainer(s), the Debian LTS team would like to fix the security issues which are currently open in the Wheezy version of openafs: https://security-tracker.debian.org/tracker/CVE-2015-8312 https://security-tracker.debian.org/tracker/CVE-2016-2860 Would you like to take care of this yo

Re: Please remove non-lts architectures from wheezy-security

2016-04-30 Thread Markus Koschany
Am 30.04.2016 um 12:17 schrieb Markus Koschany: > Am 29.04.2016 um 20:18 schrieb Tom Turelinckx: >> Hi, >> >> With the non-lts architectures such as sparc now removed from wheezy/updates >> on security.debian.org, what is the recommended way to access the archived >> security updates on non-lts a

Re: Please remove non-lts architectures from wheezy-security

2016-04-30 Thread Markus Koschany
Am 29.04.2016 um 20:18 schrieb Tom Turelinckx: > Hi, > > With the non-lts architectures such as sparc now removed from wheezy/updates > on security.debian.org, what is the recommended way to access the archived > security updates on non-lts architectures? Is using wheezy-proposed-updates > the