Re: ansible backport of CVE-2016-3096 fix

To: Dominic Hargreaves <dom@earth.li>
Cc: Harlan Lieberman-Berg <hlieberman@setec.io>, debian-backports@lists.debian.org
Subject: Re: ansible backport of CVE-2016-3096 fix
From: Alexander Wirt <formorer@formorer.de>
Date: Wed, 11 May 2016 07:36:11 +0200
Message-id: <[🔎] 20160511053610.GB3213@lisa.snow-crash.org>
In-reply-to: <[🔎] 20160510140831.GN24165@urchin.earth.li>
References: <[🔎] 20160510140831.GN24165@urchin.earth.li>

On Tue, 10 May 2016, Dominic Hargreaves wrote:

> Hi Harlan,
> 
> Thanks for maintaining ansible and the backport of 2.x into jessie!
> Please could you update the backport to 2.0.2.0-1, thus including the
> fix for the grave security bug in 2.0.1.0-2?
 ansible (2.0.2.0-1~bpo8+1) jessie-backports; urgency=medium
  .
     * Rebuild for jessie-backports.

The changelog should mention the security fix. 

I will make an announcement to d-b-a later that makes mentioning of security
fixes in the changelog mandatory. Our users should know them. 

Alex

Reply to:

References:
- ansible backport of CVE-2016-3096 fix
  - From: Dominic Hargreaves <dom@earth.li>

Prev by Date: Re: ansible backport of CVE-2016-3096 fix
Next by Date: Re: Keep iscsitarget-dkms patched to match current bpo kernel in Jessie
Previous by thread: Re: ansible backport of CVE-2016-3096 fix
Next by thread: nmu: kodi: unannounced ABI change in libcec
Index(es):
- Date
- Thread