Re: wolfssl_5.2.0-2~bpo11+1_amd64.changes REJECTED

To: Alexander Wirt <debian-backports@lists.debian.org>
Subject: Re: wolfssl_5.2.0-2~bpo11+1_amd64.changes REJECTED
From: Felix Lechner <felix.lechner@lease-up.com>
Date: Wed, 23 Feb 2022 05:48:53 -0800
Message-id: <[🔎] CAFHYt57n=WYi0TJR3jp_1NQo_M=JPTdvVFuw-_7TNeaZ3G5meA@mail.gmail.com>
In-reply-to: <E1nMoRX-000A1X-0k@fasolo.debian.org>
References: <E1nMoRX-000A1X-0k@fasolo.debian.org>

Hi,

On Wed, Feb 23, 2022 at 2:00 AM Alexander Wirt
<debian-backports@lists.debian.org> wrote:
>
> Not in testing

Fixing two grave CVEs qualifies as an "expedient exception". [1] The
FAQ says "When security related bugs are fixed in Debian unstable the
backporter is permitted to upload the package from directly there
instead of having to wait until the fix hits testing." [2]

The CVEs are not mentioned in the upload for unstable because they
were assigned later yesterday, but both CVEs are mentioned in the
upload to backports. Did you read the changelog?

For background, upstream contacted me for this upload (and all the
others) because the release fixes two grave CVE. Both were embargoed
until yesterday.

Please admit version 5.2.0-2 into backports without further delay. Thanks!

Kind regards
Felix Lechner

[1] https://backports.debian.org/Contribute/
[2] https://backports.debian.org/FAQ/

Reply to:

Follow-Ups:
- Re: wolfssl_5.2.0-2~bpo11+1_amd64.changes REJECTED
  - From: Thorsten Glaser <t.glaser@tarent.de>
- Re: wolfssl_5.2.0-2~bpo11+1_amd64.changes REJECTED
  - From: Alexander Wirt <formorer@formorer.de>

Prev by Date: Re: [pkg-go] Backport restic to bullseye?
Next by Date: Re: wolfssl_5.2.0-2~bpo11+1_amd64.changes REJECTED
Previous by thread: Bug / Regression report: bullseye-backports kernel 5.15.0-0.bpo.3-amd64 kills Apple Magic Mouse 2 scrolling functionality
Next by thread: Re: wolfssl_5.2.0-2~bpo11+1_amd64.changes REJECTED
Index(es):
- Date
- Thread