On Wed, Oct 28, 2015 at 09:35:59AM +0900, Ben Hutchings wrote:
> On Tue, 2015-10-27 at 21:57 +0100, Kurt Roeckx wrote:
> > On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> > > I've looked through the upstream repository for the patches that fix he
> > > recently announced issues. Q
On Tue, 2015-10-27 at 21:57 +0100, Kurt Roeckx wrote:
> On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> > I've looked through the upstream repository for the patches that fix he
> > recently announced issues. Quite a few of them turned out not to apply
> > to squeeze, or the newer
On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> I've looked through the upstream repository for the patches that fix he
> recently announced issues. Quite a few of them turned out not to apply
> to squeeze, or the newer stable releases, and I've updated the security
> tracker acco
On Sun, Oct 25, 2015 at 11:23:50PM +0100, Kurt Roeckx wrote:
> On Mon, Oct 26, 2015 at 06:55:06AM +0900, Ben Hutchings wrote:
> > On Sun, 2015-10-25 at 22:45 +0100, Kurt Roeckx wrote:
> > > On Mon, Oct 26, 2015 at 06:13:07AM +0900, Ben Hutchings wrote:
> > [...]
> > > > > While I have addiotional p
On Mon, Oct 26, 2015 at 06:13:07AM +0900, Ben Hutchings wrote:
> On Sun, 2015-10-25 at 11:19 +0100, Kurt Roeckx wrote:
> > On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> > > I've looked through the upstream repository for the patches that fix he
> > > recently announced issues. Q
On Mon, Oct 26, 2015 at 06:55:06AM +0900, Ben Hutchings wrote:
> On Sun, 2015-10-25 at 22:45 +0100, Kurt Roeckx wrote:
> > On Mon, Oct 26, 2015 at 06:13:07AM +0900, Ben Hutchings wrote:
> [...]
> > > > While I have addiotional patches for:
> > > > CVE-2014-9750.patch (it was missing 1 patch while i
On Sun, 2015-10-25 at 22:45 +0100, Kurt Roeckx wrote:
> On Mon, Oct 26, 2015 at 06:13:07AM +0900, Ben Hutchings wrote:
[...]
> > > While I have addiotional patches for:
> > > CVE-2014-9750.patch (it was missing 1 patch while it was fixed it
> > > seems)
> >
> > Which is split from CVE-2014-9297.
>
On Mon, Oct 26, 2015 at 06:13:07AM +0900, Ben Hutchings wrote:
> > Your bug-2899.patch patch looks a little different. You have:
> > @@ -2207,8 +2221,8 @@ crypto_bob(
> > vp->sig = emalloc(sign_siglen);
> > EVP_SignInit(&ctx, sign_digest);
> > EVP_SignUpdate(&ctx, (u_char *)&v
On Sun, 2015-10-25 at 11:19 +0100, Kurt Roeckx wrote:
> On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> > I've looked through the upstream repository for the patches that fix he
> > recently announced issues. Quite a few of them turned out not to apply
> > to squeeze, or the newer
On Sun, Oct 25, 2015 at 11:51:24AM +0100, Kurt Roeckx wrote:
> On Sun, Oct 25, 2015 at 11:19:03AM +0100, Kurt Roeckx wrote:
> > On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> > > I've looked through the upstream repository for the patches that fix he
> > > recently announced issue
On Sun, Oct 25, 2015 at 11:19:03AM +0100, Kurt Roeckx wrote:
> On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> > I've looked through the upstream repository for the patches that fix he
> > recently announced issues. Quite a few of them turned out not to apply
> > to squeeze, or th
On Sun, Oct 25, 2015 at 01:30:18PM +0900, Ben Hutchings wrote:
> I've looked through the upstream repository for the patches that fix he
> recently announced issues. Quite a few of them turned out not to apply
> to squeeze, or the newer stable releases, and I've updated the security
> tracker acco
12 matches
Mail list logo
