Hi,
As for my work:
> lame (Hugo Lefeuvre)
> NOTE: 20180529: Tested patch ready for upload. Waiting for feedback from
> the security team.
> NOTE: See https://lists.debian.org/debian-lts/2018/05/msg00081.html
As said, I'm waiting for the security team to review the patch. It will
most likel
Hi Markus,
On Thu, May 31, 2018 at 01:18:29PM +0200, Markus Koschany wrote:
>
> [adding Raphael / Freexian to CC]
[dropping events@d.o, adding debian-lts]
> Am 31.05.2018 um 08:08 schrieb Joost van Baal-Ilić:
> >
> > [non-public reply, feel free to quote me publicly though]
> >
> > On Wed, May
Hi,
On Wed, May 30, 2018 at 10:56:20PM +0530, Abhijith PA wrote:
> I've prepared update for procps. Patches are backported from
> procps_3.3.9-9+deb8u1 (jessie). Debdiff is attached. I was able to
> install it on a clean machine and ran some procps commands. Please
> review and upload.
I'll do so
Hi abhijith,
On Wed, May 30, 2018 at 10:56:20PM +0530, Abhijith PA wrote:
> I've prepared update for procps. Patches are backported from
> procps_3.3.9-9+deb8u1 (jessie). Debdiff is attached. I was able to
> install it on a clean machine and ran some procps commands. Please
> review and upload.
>
Hi.
On Thursday 31 May 2018 08:18 PM, Holger Levsen wrote:
>> +++ procps-3.3.3/debian/patches/CVE-2018-1125.patch 2018-05-30
>> 16:49:18.0 +
>> +} else {
>> +strcpy (cmd, task.cmd);
>
> this hunk is not present in
> debian/patches/000
Hi
About https://deb.freexian.com/extended-lts header: "Debian Extended
LTS by Freexian".
The explanation that follows is perfect, but the header could be
misunderstood, imho. How about "Extended LTS for Debian (7) by
Freexian"? Debian... by Freexian could be understood like Debian is a
trademar
On 2018-05-30 17:36:16, Chris Lamb wrote:
> Hi Antoine,
>
>> So wheezy is EOL starting from tomorrow, as will probably be announced
>> then.
>
> (Hm, would it make sense to update/sync ca-certificates just before we
> EOL wheezy?)
I'm not sure. I lost track of what happened with that the last time
Hi Antoine et al.,
> > (Hm, would it make sense to update/sync ca-certificates just before we
> > EOL wheezy?)
>
> I'm not sure. I lost track of what happened with that the last time -
> I remember working on trying to coordinate an update for some CAs
> removals last time, and I don't know what
On 2018-05-30 20:21:38, Salvatore Bonaccorso wrote:
> On Wed, May 30, 2018 at 07:42:02PM +0200, Markus Koschany wrote:
>> Hi,
>>
>> [...]
>> >>From what I understand, the next steps here are:
>> >
>> > 1. send the announcement (tomorrow, markus?)
>>
>> I will send the announcement on 01.06. aro
On 2018-05-31 19:05:02, Chris Lamb wrote:
> Hi Antoine et al.,
>
>> > (Hm, would it make sense to update/sync ca-certificates just before we
>> > EOL wheezy?)
>>
>> I'm not sure. I lost track of what happened with that the last time -
>> I remember working on trying to coordinate an update for som
Hi Antoine,
> >
> > I remember uploading (or helping to upload?) a version that removed
> > the StartCom certs, but a quick glance a couple of days ago suggested
> > that we were missing a handful of newer, although somewhat less
> > serious, CAs.
>
> I would say that could easily be punted to EL
On 2018-05-31 19:20:40, Chris Lamb wrote:
> Hi Antoine,
>
>> >
>> > I remember uploading (or helping to upload?) a version that removed
>> > the StartCom certs, but a quick glance a couple of days ago suggested
>> > that we were missing a handful of newer, although somewhat less
>> > serious, CAs.
Antoine,
> Ah, then it might be relevant to push such a change. Should we add this
> to dla-needed.txt?
Please do so that it does not get lost. :)
I would suggest adding a note indicating that its inclusion is not
necessarily to imply an upload is necessary, more that a brief check
is required f
On 2018-05-31 19:28:59, Chris Lamb wrote:
> Antoine,
>
>> Ah, then it might be relevant to push such a change. Should we add this
>> to dla-needed.txt?
>
> Please do so that it does not get lost. :)
>
> I would suggest adding a note indicating that its inclusion is not
> necessarily to imply an upl
On Thu, May 31, 2018 at 02:05:38PM -0400, Antoine Beaupré wrote:
> It seems to me git should also be patched considering the severity, but
> I haven't looked at how complex the patch is.
I took a brief look and it didnt look easy, 20 or so patches, touching
many files, and the code has changed qui
Hi,
On Thu, May 31, 2018 at 09:08:16PM +0530, Abhijith PA wrote:
> >> +++ procps-3.3.3/debian/patches/CVE-2018-1125.patch2018-05-30
> >> 16:49:18.0 +
> >> + } else {
> >> + strcpy (cmd, task.cmd);
> > this hunk is not present in
> > de
On Wed, 2018-05-30 at 11:35 -0400, Antoine Beaupré wrote:
> Should we provide updates for the spectre/meltdown v4 in the
> intel-microcode package?
>
> It's non-free, so technically it's not supported even by the security
> team, but considering the severity of those vulnerabilities, I guess we
>
On Wed, 2018-05-30 at 11:51 -0400, Antoine Beaupré wrote:
> So wheezy is EOL starting from tomorrow, as will probably be announced
> then.
>
> This brings the question of whatever happens to the pending work in
> dla-needed.txt, which is probably at an all time lowest size. Here's the
> whole thin
Dear LTS Team
Your work is greatly appreciated! I would like to thank you all for your
effort. Without the LTS of wheezy it would have been a big pain for me.
Thanks a lot for helping that much.
Best regards, Adrian.
Hello all
Sorry for the late reply.
I have renamed the announcement draft to match the usual format:
https://salsa.debian.org/publicity-team/announcements/blob/master/en/2018/20180601.wml
also removed the short "About Debian" paragraph, and removed the comment
lines that we use as "help" for wr
Hi Laura e.a.,
On Fri, Jun 01, 2018 at 01:32:21AM +0200, Laura Arjona Reina wrote:
>
> https://salsa.debian.org/publicity-team/announcements/blob/master/en/2018/20180601.wml
And more below :
> El 31/05/18 a las 15:33, Joost van Baal-Ilić escribió:
> > On Thu, May 31, 2018 at 01:18:29PM +0200,
21 matches
Mail list logo
