On Tue, Mar 28, 2017 at 8:12 AM, Michael Shuler wrote:
> I need to fix up the jessie PU I have filed (and update to 2.11), and
> I'll do a wheezy PU at the same time. Thanks!
Debian wheezy is no longer managed by the release team, so you will
need to do an LTS upload instead:
https://wiki.debian
On 03/25/2017 03:32 AM, Paul Wise wrote:
> Hi all,
>
> I note that there have been some CA removals and additions that would
> be nice to have in wheezy, in particular the ISRG Root for LE, thoughts?
I need to fix up the jessie PU I have filed (and update to 2.11), and
I'll do a wheezy PU at the
FWIW, the security team just marked all the currently pending security
issues of binutils in jessie as "no-dsa (minor issue)" which means they
consider the issues are not serious enough to warrant a security upload.
after a quick review of the issues, i have also followed suit and marked
the issue
unsubscribe
> Am 27.03.2017 um 10:18 schrieb Markus Koschany :
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
> Package: xrdp
> Version: 0.5.0-2+deb7u1
> CVE ID : CVE-2017-6967
> Debian Bug : 858143
>
> It was discovered that xrdp, a Remote Desktop Protocol
On Mon, Mar 27, 2017 at 09:39:09AM +0100, Chris Lamb wrote:
> Hi Mark,
>
> > No, I haven't. The initial report was sent in privately from an external
> > third
> > party via Eduard Bloch, the apt-cacher-ng maintainer.
>
> I've uploaded and announced this as DLA 873-1. Many thanks. :)
>
> (The o
Chris Lamb wrote:
> (The only issue with your backport was it was missing a "Closes:"
> line; however I will manually "version close" #858739 once it has
> been ACCEPTed by the archive.)
For my (own!) reference, I just realised I could have done something
like:
$ dpkg-buildpackage […] --change
Hi Mark,
> No, I haven't. The initial report was sent in privately from an external third
> party via Eduard Bloch, the apt-cacher-ng maintainer.
I've uploaded and announced this as DLA 873-1. Many thanks. :)
(The only issue with your backport was it was missing a "Closes:"
line; however I will
On Mon, Mar 27, 2017 at 08:41:55AM +0100, Chris Lamb wrote:
> Hi Mark,
>
> > 1.7.6+deb7u1 is now available from http://hindley.org.uk/~mark/debian
>
> Very happy to review, upload and announce this. :)
>
> However, before I do, did you request a CVE? No worries if not, I will just
> wait
> fori
Hi Mark,
> 1.7.6+deb7u1 is now available from http://hindley.org.uk/~mark/debian
Very happy to review, upload and announce this. :)
However, before I do, did you request a CVE? No worries if not, I will just wait
forit to be assigned if you have.
Regards,
--
,''`.
: :' : Chri
