Control: tags -1 -moreinfo +confirmed[CCing -boot@ and kibi for reference, as wpa produces a udeb. The fixes look "obviously correct" enough to me]
On 2016-07-21 10:51, Andrew Shadura wrote:
On 21/07/16 11:42, Andrew Shadura wrote:On 21/07/16 11:37, Andrew Shadura wrote:On 21/07/16 11:32, Adam D. Barratt wrote:I realise that none of the above are actually enabled in debian/patches/series, but that makes it even more confusing thatthey're in the diff. Please prepare and test a package that contains only the changes relating to fixing CVE-2016-4476 and CVE-2016-4477 andprovide a debdiff of that.I have redone the package, tested it and generated a debdiff.
That looks much better, thanks. :-) +wpa (2.3-1+deb8u4) jessie-security; urgency=mediumThe distribution there should be "jessie" (and was in the earlier diff). With that changed, please feel free to go ahead.
Regards, Adam