Hi Carsten,
On Sun, Oct 15, 2017 at 09:46:15PM +0200, Carsten Schoenert wrote:
> Hello Ola,
>
> Am 15.10.2017 um 13:59 schrieb Ola Lundqvist:
> > Sounds good! I have updated dla-needed.txt now.
>
> I uploaded all thunderbird related packages within a new source package
> named thunderbird to NEW
Hello Ola,
Am 15.10.2017 um 13:59 schrieb Ola Lundqvist:
> Sounds good! I have updated dla-needed.txt now.
I uploaded all thunderbird related packages within a new source package
named thunderbird to NEW on Friday last week. The upload will be
processed by the ftp-masters soon hopefully.
The bina
Dear maintainers,
The Debian LTS team would like to fix the security issues which are
currently open in the Wheezy version of rubygems and ruby1.9.1:
https://security-tracker.debian.org/tracker/CVE-2017-0903
The security note tells that version < 2 is not affected. However looking
at the code it l
Dear maintainer,
The Debian LTS team would like to fix the security issues which are
currently open in the Wheezy version of libjpeg6b and libjpeg8:
https://security-tracker.debian.org/tracker/CVE-2016-15232
Would you like to take care of this yourself?
If yes, please follow the workflow we have
Dear maintainers
The Debian LTS team would like to fix the security issues which are
currently open in the Wheezy version of jbossas4:
https://security-tracker.debian.org/tracker/CVE-2017-12149
Could not find a proposed patch so it was not possible to verify that
the source is actually vulnerable.
Dear maintainers,
The Debian LTS team would like to fix the security issues which are
currently open in the Wheezy version of sdl-image1.2:
https://security-tracker.debian.org/tracker/CVE-2017-2887
Would you like to take care of this yourself?
If yes, please follow the workflow we have defined h
Dear maintainers,
The Debian LTS team would like to fix the security issues which are
currently open in the Wheezy version of git:
https://security-tracker.debian.org/tracker/CVE-2017-15298
There is a discussion regarding this issue as all people are not
convinced that this is a securit issue. It
Hi Jens
Good point. I'll add it to dla-needed.txt with a special note to
follow the upstream discussion. Upstream is not completely convinced.
Best regards
// Ola
On 15 October 2017 at 15:12, Jens Korte wrote:
> Am Sun, 15 Oct 2017 14:15:31 +0200
> schrieb Ola Lundqvist :
>
>> Hi fellow LTS ma
Am Sun, 15 Oct 2017 14:15:31 +0200
schrieb Ola Lundqvist :
> Hi fellow LTS maintainers
> I have looked into CVE-2017-15298 for git. The vulnerability is that
> if you try to clone a crafted repo it may use very lot of memory.
>
> I'm not convinced that this is a vulnerability that we should spend
Hi fellow LTS maintainers
I have looked into CVE-2017-15298 for git. The vulnerability is that
if you try to clone a crafted repo it may use very lot of memory.
I'm not convinced that this is a vulnerability that we should spend time on.
I mean the worst thing is that you have to press Ctrl-C to m
Sounds good! I have updated dla-needed.txt now.
// Ola
On 14 October 2017 at 19:27, Guido Günther wrote:
> Hi,
> On Sat, Oct 14, 2017 at 07:23:45PM +0200, Ola Lundqvist wrote:
>> Dear maintainers,
>>
>> The Debian LTS team would like to fix the security issues which are
>> currently open in the
11 matches
Mail list logo
