[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: squeeze/wheezy updates of Redmine (+ long term state of redmine packaging)

Hello Antoine,

On Tue, 29 Dec 2015, anarcat wrote:
> Hello dear maintainers of the Redmine packages!
> 
> The Debian LTS team would like to fix the security issues which are
> currently open in the Squeeze or Wheezy versions of redmine:

I believe that Redmine is de-facto excluded from security support
because it depends on Rails which is not supported:
http://lists.debian.org/20150323154348.GA21941@inutil.org

We should make this explicit because we made the mistake multiple
times... and I believe this is true both for Squeeze and Wheezy right now.

I have thus pushed the attached patch to the git repository of
debian-security-support. Ccing the security team to inform them
of this change.

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

commit 31baf0bd9d2cfe75d7b8193a2954dbb9eea6d0e6 (HEAD -> master)
Author: Raphaël Hertzog <hertzog@debian.org>
Date:   Wed Dec 30 10:20:01 2015 +0100

    Mark redmine as unsupported in squeeze and wheezy due to the fact that it depends on rails which is not supported.

diff --git a/debian/changelog b/debian/changelog
index 9327732..410b167 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -11,6 +11,8 @@ debian-security-support (2015.08.13) UNRELEASED; urgency=medium
   * Mark xbmc and kodi as unsupported in all releases. Closes: #791867
   * Mark qtwebkit-opensource-src as unsupported in all releases.
     Closes: #799189
+  * Mark redmine as unsupported in squeeze and wheezy due to the fact that
+    it depends on rails which is not supported.
 
  -- Salvatore Bonaccorso <carnil@debian.org>  Thu, 13 Aug 2015 21:45:20 +0200
 
diff --git a/security-support-ended.deb6 b/security-support-ended.deb6
index 834fa24..352e034 100644
--- a/security-support-ended.deb6
+++ b/security-support-ended.deb6
@@ -39,6 +39,7 @@ piwigo          2.1.2-3                 2015-02-24 Not supported in squeeze LTS
 qemu            0.12.5+dfsg-3squeeze4   2014-12-11 https://bugs.debian.org/772858
 qemu-kvm        0.12.5+dfsg-5+squeeze11 2014-05-31 Not supported in squeeze LTS
 rails           2.3.5-1.2+squeeze8      2014-05-31 Not supported in squeeze LTS
+redmine         1.0.1-2                 2014-05-31 Depends on rails which is not supported
 serendipity     1.5.3-2                 2014-05-31 Not supported in squeeze LTS
 smarty          2.6.26-0.2+squeeze1     2014-05-31 Not supported in squeeze LTS
 smarty3         3.0~rc1-1               2014-05-31 Not supported in squeeze LTS
diff --git a/security-support-ended.deb7 b/security-support-ended.deb7
index 0417cfe..ce5c117 100644
--- a/security-support-ended.deb7
+++ b/security-support-ended.deb7
@@ -19,4 +19,5 @@ ruby-activeresource-2.3  2.3.14-3                2014-07-19  https://lists.debia
 ruby-actionmailer-2.3    2.3.14-3                2014-07-19  https://lists.debian.org/debian-security-announce/2014/msg00164.html
 ruby-activesupport-2.3   2.3.14-7                2014-07-19  https://lists.debian.org/debian-security-announce/2014/msg00164.html
 ruby-rails-2.3           2.3.14-4                2014-07-19  https://lists.debian.org/debian-security-announce/2014/msg00164.html
+redmine                  1.4.4+dfsg1-2+deb7u1    2014-07-19  Depends on ruby-rails-2.3 which is not supported
 typo3-src                4.5.19+dfsg1-5+wheezy4  2015-07-23  https://lists.debian.org/debian-security-announce/2015/msg00210.html
Reply to: