Hi, pirmadienis 18 rugpjūtis 2008, thacrazze rašė: > in the Amarok package is a security issue > > It is fixed in Amarok 1.4.10 >(http://secunia.com/advisories/31418/, > http://amarok.kde.org/en/releases/1/4/10) The fixed version has been in unstable for two days already. 1.4.10 is a new upstream release but: 1. The only real change since 1.4.9.1 is the security fix mentioned above and updates to translations. 2. The big upstream tarball diff comes from the differences in *autogenerated* autotools stuff. However, autotools stuff is regenerated each time package is built anyway so these differences can be safely ignored. 3. Packaging diff from 1.4.9.1-3 to 1.4.10-1 is just a new debian/changelog entry. Given the reasons above, please unblock amarok 1.4.10-1 and allow it to migrate to Lenny. You can of couse delay 1.4.10-1 migration a bit if you want since the security issue in question is not very critical. -- Modestas Vainius <modestas@vainius.eu>
Attachment:
signature.asc
Description: This is a digitally signed message part.