Re: gifsicle update
Em 12-01-2018 11:30, Alexander Wirt escreveu:
> On Fri, 12 Jan 2018, Herbert Fortes wrote:
>
> Hi,
>
>> Gifsicle just accepted security fix[0]. And there is
>> a backport in oldstable - 1.88-3~bpo8+1 - that I
>> did in the past.
>>
>> [0] - https://security-tracker.debian.org/tracker/source-package/gifsicle
>>
>> I want to update the package. And so, I only need
>> to get the source which is in backport and put the patch
>> there. The debian /changelog will look like this:
>>
>> +gifsicle (1.88-3~bpo8+2) jessie-backports; urgency=medium
>> +
>> + * Closes: CVE-2017-1000421
>> +
>> + -- Herbert Parentes Fortes Neto <hpfn@debian.org> DATE
>> +
>> gifsicle (1.88-3~bpo8+1) jessie-backports; urgency=medium
>>
>> * Rebuild for jessie-backports.
>>
>> -- Herbert Parentes Fortes Neto <hpfn@debian.org> Sun, 11 Jun 2017 08:59:03 -0300
>>
>>
>> Or I need to get the source from Jessie? If so, please
>> tell me how the debian/changelog entry needs to be. I
>> am worry about the version number.
I made a mistake here. Source from Stretch I tried to say. :(
> Source for backports to oldstable is jessie. So please do backport 1.88-3+deb9u1
Ok. Get the stretch-security and put it in Jessie. Thanks!
Regards,
Herbert
Reply to: