you handle the Wheezy issues, while I/we take
care of the unstable/testing upload.
But I have not been able to track down fixes for the issues yet. Did
you find any patches? If so, please submit links to BTS.
--
Happy hacking
Petter Reinholdtsen
en. The upload is already done and accepted, if I understood the
email I got correctly.
--
Happy hacking
Petter Reinholdtsen
e with more experience in the process would take care of that book
keeping, so I assumed my part of this update process was done when the
package was accepted into the archive. Is that still correct?
--
Happy hacking
Petter Reinholdtsen
[Petter Reinholdtsen]
> Thank you. I'm building and testing in wheezy at the moment, and will
> upload when I am done. I would be very happy if someone else took the
> bookkeeping.
I'm not quite sure if the CVE tracker should be updated like this for
LTS entries or not.
hannels in the header (CVE-2014-9638,
CVE-2014-9639).
(Closes: 776086)
* Fix oggenc crash on closing raw input files by backporting r19117 from
upstream
(CVE-2014-9640) (Closes: #771363).
-- Petter Reinholdtsen Sun, 02 Jul 2017 20:53:04 +0200
--
Happy hacking
Petter Reinholdtsen
and beyon.
Should this update be announced on the announcement list? Does it need
a DLA? The security team tagged it no-dsa. I can build, test and
upload, but am unsure abount the announcing part.
--
Happy hacking
Petter Reinholdtsen
two patches I believe fixes CVE
issues with vorbis-tool. Hopefully the fixes should be uploaded into
unstable soon.
I am in touch with Mike on IRC to discuss how to best coordinate this
fixing. I suggest #debian-edu or #debian-multimedia as meeting places.
--
Happy hacking
Petter Reinholdtsen
