Hi Adam,
On Sat, May 28, 2022 at 8:51 PM Adam D. Barratt
wrote:
> Please go ahead, thanks.
Uploaded. Thanks!
* Minor AppArmor profile updates (debian/usr.bin.tcpdump):
++ Grant access to *.cap (closes: #989433).
++ Account for numerical suffix in filenames added by -W (closes: #1010688).
+
+ -- Romain Francoise Sun, 22 May 2022 18:22:50 +0200
+
tcpdump (4.99.0-2) unstable; urgency=medium
#992202).
- -- Romain Francoise Sat, 11 Sep 2021 23:24:41 +0200
+ -- Romain Francoise Sat, 18 Sep 2021 15:02:56 +0200
tmux (3.1c-1) unstable; urgency=medium
am to fix race condition
+which results in the config not being loaded if several clients are
+interacting with the server while it's initializing (upstream GitHub
+issue #2438, closes: #992202).
+
+ -- Romain Francoise Sat, 11 Sep 2021 23:24:41 +0200
+
tmux (3.1c-1) unstabl
On Mon, Jan 11, 2021 at 03:57:10PM +0100, Cyril Brulebois wrote:
> If I'm getting this right, the udeb part shouldn't be much of an issue,
> but the change regarding the fresh install vs. grub-install /could/ have
> side effects. As documented, the installer /should/ be doing the right
> thing alre
Hi Adam,
On Thu, Nov 19, 2020 at 9:31 PM Adam D. Barratt
wrote:
> Please go ahead.
Thanks, uploaded.
fix
+untrusted input issue in the PPP printer (CVE-2020-8037, closes: #973877).
+
+ -- Romain Francoise Sat, 07 Nov 2020 13:36:24 +0100
+
tcpdump (4.9.3-1~deb10u1) buster-security; urgency=high
* New upstream release, with fixes for 24 different CVEs (closes: #941698).
diff -Nru tcpdump
enable-ipv6 from configure line, it has been the default for
+ years now.
+
+ -- Romain Francoise Sat, 11 Feb 2017 16:40:05 +0100
+
tcpdump (4.9.0-1) unstable; urgency=high
* New upstream security release, fixing the following:
diff -Nru tcpdump-4.9.0/debian/control tcpdump-4.9.0/debi
overflow in print-isoclns.c:clnp_print().
* Re-enable all tests and bump build-dep on libpcap0.8-dev to >= 1.8
accordingly.
* Switch Vcs-Git URL to the https one.
* Adjust lintian override name about dh 9.
-- Romain Francoise Thu, 26 Jan 2017 20:04:11 +0100
On Sun, Aug 02, 2015 at 08:14:20PM +0100, Adam D. Barratt wrote:
> Please go ahead.
Thanks Adam, uploaded.
--
Romain Francoise
http://people.debian.org/~rfrancoise/
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Co
data if '-w -' is used (closes: #793479).
+
+ -- Romain Francoise Sun, 02 Aug 2015 19:57:22 +0200
+
tcpdump (4.6.2-5) unstable; urgency=high
* Cherry-pick commit fb6e5377f3 from upstream Git to fix regressions in the
diff -Nru tcpdump-4.6.2/debian/patches/50_droproot_stderr.diff tc
1,3 +1,11 @@
+tcpdump (4.6.2-5) unstable; urgency=high
+
+ * Cherry-pick commit fb6e5377f3 from upstream Git to fix regressions in the
+RPKI/RTR printer after the CVE-2015-2153 changes. Thanks to Artur Rona
+from Ubuntu for the heads-up (closes: #781362).
+
+ -- Romain Francoise Sat, 04 Apr
lly enabled, which avoids some confusion
+(closes: #781209).
+
+ -- Romain Francoise Sat, 04 Apr 2015 17:55:38 +0200
+
strongswan (5.2.1-5) unstable; urgency=high
* debian/patches:
diff -Nru strongswan-5.2.1/debian/patches/03_systemd-service.patch strongswan-5.2.1/debian/patches/03_system
llowing security
+issues:
++ CVE-2015-0261: missing bounds checks in IPv6 Mobility printer.
++ CVE-2015-2153: missing bounds checks in RPKI/RTR printer.
++ CVE-2015-2154: missing bounds checks in ISOCLNS printer.
++ CVE-2015-2155: missing bounds checks in ForCES printer.
+
+ -- Roma
On Sun, Nov 30, 2014 at 05:06:49PM +, Adam D. Barratt wrote:
> On Sun, 2014-11-30 at 17:56 +0100, Romain Francoise wrote:
>> Please unblock tcpdump 4.6.2-3, it fixes a security vulnerability in the
>> PPP dissector known as CVE-2014-9140.
>
> Unblocked.
Thanks!
--
R
dissector (CVE-2014-9140).
+
+ -- Romain Francoise Sat, 29 Nov 2014 12:23:53 +0100
+
tcpdump (4.6.2-2) unstable; urgency=high
* Urgency high due to security fixes.
diff -Nru tcpdump-4.6.2/debian/patches/60_cve-2014-9140.diff tcpdump-4.6.2/debian/patches/60_cve-2014-9140.diff
--- tcpdump
.html
[2]: http://anonscm.debian.org/viewvc/secure-testing/hardening/
--
Romain Francoise
http://people.debian.org/~rfrancoise/
signature.asc
Description: PGP signature
Hi,
Any progress on this transition?
Thanks,
--
Romain Francoise
http://people.debian.org/~rfrancoise/
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.
Ok, thanks. Uploaded.
--
Romain Francoise
http://people.debian.org/~rfrancoise/
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/
Hi Adam,
Anything else I can do to get this going forward? Or can I just upload?
Thanks,
--
Romain Francoise
http://people.debian.org/~rfrancoise/
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Conta
table update, that
way we have the same code in squeeze and in wheezy (or we will when
1.1.1-8 migrates).
Cheers,
--
Romain Francoise
http://people.debian.org/~rfrancoise/
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble?
n the bonding
+module is loaded (closes: #612803).
+
+ -- Romain Francoise Sun, 10 Jul 2011 19:26:04 +0200
+
libpcap (1.1.1-2) unstable; urgency=low
* debian/patches/50_kfreebsd.diff: Fix configure script to properly
diff -Nru libpcap-1.1.1/debian/patches/45_bonding.diff
libpcap-1.1.1/d
Leo 'costela' Antunes writes:
> I wanted to get libevent in sid as fast as possible because of another
> of my packages, but it can wait a bit if it helps.
FWIW libevent 2.0 would allow us to fix an important bug in tmux as well,
so the sooner the better.
--
Romain
es on libevent for
signal handling and uses the select/poll backend (on Linux libevent
uses epoll by default), but if we don't have any existing reports in
the BTS about this I'm not sure it's wise to have this in squeeze at
this stage of the release.
Thanks,
--
Romain Francoise
http
|4
| po/vi.po| 639 ++---
| 13 files changed, 380 insertions(+), 443 deletions(-)
Thanks,
--
Romain Francoise <[EMAIL PROTECTED]>
http://people.debian.org/~rfrancoise/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subj
Steve Langasek <[EMAIL PROTECTED]> writes:
> So if there's no evidence of arbitrary code execution, I think
> it's appropriate here to downgrade the bug -- but the security
> team should also be apprised.
Fine with me.
--
,''`.
: :' :
ng 20-some packages for an 0.8->0.9 transition?
Yes, with the same soname and a simple shlibs bump.
> I don't see any reason why this wouldn't work, and it would certainly
> be a lot easier.
You're right, I think I'll do that.
--
,''`.
: :
with libpcap0.8. Depending on how fast things go, asking for the
removal of the old versions in September sounds reasonable.
I'd like to get the ok of the release team before proceeding.
Thanks,
--
,''`.
: :' :Romain Francoise <[EMAIL PROTECTED]>
`. `
opularity contest and I'd advice it to be changed
> before the release.
It installs neither Emacs nor XEmacs. It does, however, install vim via
the vim-gtk dependency. :-)
Cheers,
--
,''`.
: :' :Romain Francoise <[EMAIL PROTECTED]>
`. `' ht
> -shlibs:Depends=libc6 (>= 2.3.2.ds1-4)
> +shlibs:Depends=libc6 (>= 2.3.2.ds1-21)
Yes, already fixed in the upcoming -16.
Thanks,
--
,''`.
: :' :Romain Francoise <[EMAIL PROTECTED]>
`. `' http://people.debian.org/~rfrancoise/
`-
--
ings to do but I'd like to see these cleanups in sarge.
Thanks,
--
,''`.
: :' :Romain Francoise <[EMAIL PROTECTED]>
`. `' http://people.debian.org/~rfrancoise/
`-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ditions, some files in the
+distribution are still under the 4-clause BSD license (closes: #283008).
+ * debian/changelog: Revise 3.8.3-4 entry to add CAN numbers (which have
+been assigned in the meantime).
+
+ -- Romain Francoise <[EMAIL PROTECTED]> Sun, 1 May 2005 17:23:45 +020
ntly a bit rough around
the edges, and it's even unusable for me because of bug #283240. This
is by no means a critical bug by Debian standards but as a mere user I
would prefer sarge to ship with version 0.80.
My two cents,
--
,''`.
: :' :Romain Fr
of 1.41 for my own machines.)
Cheers,
--
,''`.
: :' :Romain Francoise <[EMAIL PROTECTED]>
`. `' http://people.debian.org/~rfrancoise/
`-
pgpopBn8B1UrF.pgp
Description: PGP signature
s), see #220643. I had
several mail exchanges and IRC conversations with the maintainer who
promised several times to do so, but he seems to have real-life problems
right now and never got around to doing it. Note that he didn't
followup to any of the bugs opened against wmbubble at the m
35 matches
Mail list logo