automating process for publishing DLAs on the website

Hi! Many of you probably already know this website and its precious RSS feed: https://www.debian.org/security/ Few of you might already know that DLAs are *supposed* to show up in there as well, and did for a while. For example, here's a few DLAs in 2014: https://www.debian.org/security/2014/

november report

An early report, this month, as I've ran out of work hours earlier than expected... GnuPG & Enigmail To get Enigmail working properly with the Thunderbird upload from last week, we need GnuPG 2.1 in jessie. I [backported GnuPG 2.1][] to Debian jessie directly, using work already

Re: the way to enigmail: gnupg 2.1 backport considerations

On 2018-11-19 22:32:17, Alexander Wirt wrote: > I can't stress thos often enough. Jessie-backports doesn't exist anymore. > They are unsupported for months and I do really hope that they get archived > soon. I'm sorry I implied we might use backports for this. I didn't mean to: I mean we should t

Re: the way to enigmail: gnupg 2.1 backport considerations

On Mon, Nov 19, 2018 at 03:43:59PM -0500, Antoine Beaupré wrote: > and I haven't > heard any negative (or positive) feedback on the build, so I'm going > under the assertion that it doesn't cause too much trouble. Realistically that means that noone tested them. Cheers, Moritz

Re: the way to enigmail: gnupg 2.1 backport considerations

On Mon, 19 Nov 2018, Antoine Beaupré wrote: > On 2018-11-13 22:02:45, Ben Hutchings wrote: > > On Tue, 2018-11-13 at 12:31 -0500, Daniel Kahn Gillmor wrote: > >> On Mon 2018-11-12 15:16:39 -0500, Antoine Beaupré wrote: > >> > >> > * libgcrypt20 (part of GnuTLS, 1.6 -> 1.7) > >> > >> libgcrypt i

Re: the way to enigmail: gnupg 2.1 backport considerations

On 2018-11-13 22:02:45, Ben Hutchings wrote: > On Tue, 2018-11-13 at 12:31 -0500, Daniel Kahn Gillmor wrote: >> On Mon 2018-11-12 15:16:39 -0500, Antoine Beaupré wrote: >> >> > * libgcrypt20 (part of GnuTLS, 1.6 -> 1.7) >> >> libgcrypt is not a part of GnuTLS. GnuTLS has used nettle instead of

Re: the way to enigmail: gnupg 2.1 backport considerations

Hi, As I'm running out of time to work on this problem for the month, I figured I would at least try to wrap up the conversation we had on the topic here so we can find a solution to move forward on. The current situation is that I have a backport of GnuPG 2.1 available for testing here: htt

testing openssl for Jessie LTS

Hi everybody, I uploaded version 1.0.1t-1+deb8u10 of openssl to: https://people.debian.org/~alteholz/packages/jessie-lts/openssl/ Please give it a try and tell me about any problems you met. Thanks! Thorsten * CVE-2018-0735 Samuel Weiser reported a timing vulnerability in the OpenSS