Re: How to deal with wireshark CVE affecting Squeeze

To: balint@balintreczey.hu
Cc: Raphael Hertzog <hertzog@debian.org>, debian-lts@lists.debian.org
Subject: Re: How to deal with wireshark CVE affecting Squeeze
From: Ben Hutchings <ben@decadent.org.uk>
Date: Sun, 12 Apr 2015 00:38:50 +0100
Message-id: <[🔎] 1428795530.29665.32.camel@decadent.org.uk>
In-reply-to: <[🔎] CAK0OdpxFv+4dX4eC1ZrBQnVr+nwpBjsXFUTreTp+HZBvC+OK=Q@mail.gmail.com>
References: <[🔎] 20150410215944.GA22236@home.ouaza.com> <[🔎] CAK0OdpxFv+4dX4eC1ZrBQnVr+nwpBjsXFUTreTp+HZBvC+OK=Q@mail.gmail.com>

On Sun, 2015-04-12 at 01:05 +0200, Bálint Réczey wrote:
[...]
> I assume this situation is not unique to Wireshark. What do you think,
> what would be the best for the LTS project in Wireshark's case and
> what is the general LTS strategy in similar cases?

I think the best approach would be either:
a. remove it from support and upload wireshark 1.8 to squeeze-backports
   if possible, or
b. upload the backported wireshark 1.8 package to squeeze-lts

Ben.

-- 
Ben Hutchings
compatible: Gracefully accepts erroneous data from any source

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: How to deal with wireshark CVE affecting Squeeze
  - From: Bálint Réczey <balint@balintreczey.hu>
- Re: How to deal with wireshark CVE affecting Squeeze
  - From: Raphael Hertzog <hertzog@debian.org>

References:
- How to deal with wireshark CVE affecting Squeeze
  - From: Raphael Hertzog <hertzog@debian.org>
- Re: How to deal with wireshark CVE affecting Squeeze
  - From: Bálint Réczey <balint@balintreczey.hu>

Prev by Date: Re: Any ideas on whether or not a Wheezy LTS will happen or not
Next by Date: Re: Any ideas on whether or not a Wheezy LTS will happen or not
Previous by thread: Re: How to deal with wireshark CVE affecting Squeeze
Next by thread: Re: How to deal with wireshark CVE affecting Squeeze
Index(es):
- Date
- Thread