Michael Tokarev <mjt@tls.msk.ru> (2015-03-04): > 02.03.2015 19:53, Cyril Brulebois wrote: > > […] > I was calling you that because of a single word you used - intrusive - > for changes which are a) very localized to d/rules (touching a little > place of it) and b) not affecting anything you care, and especially > not affecting the resulting binaries in any way. And the changes which > were made way before freeze, the package hasn't been unblocked because > of old/buggy glibc installed on some buildds. And ofcourse I stand > by my words. Note that much bigger and more intrusive changes were > accepted after the freeze. Meh. > > I guess someone with enough time could stack this extra change on top of > > the jessie branch, and either let it stay there, or upload the package > > at the same time. > > > > Sorry, I lost track of that extra fix and didn't think of it when Mehdi > > proposed NMUing it for the first CVE fix. > > And now someone please tell me why to do all this. From a package with > a willing maintainer who cared about the package, from a package which > was in good shape and with all the changes carefully selected for jessie, > to basically an unmaintained package with no one having time to maintain > and no one who cares, exactly the way it was over the years, and which > required a lot of work to get it in some more or less good shape. Looking at the just uploaded -15, I don't understand what you tried to do there. In the meanwhile I had been included Michael's proposed fix for CVE-2014-9645 aka. #776186, as opposed to CVE-2014-4607 aka. #768945, and successfully testing it in a d-i context. Since you updated the master branch with what got uploaded, I've pushed my local branch as pu/776186. I have the same changes for the jessie branch, and initially planned on first getting stuff into unstable, let it be tested for a while there, then consider tpu-ing. Feel free to incorporate bits of the said branch and upload again to unstable; I can then deal with the jessie part later. Mraw, KiBi.
Attachment:
signature.asc
Description: Digital signature