Re: git-annex security issue backports

To: Sébastien Delafond <seb@debian.org>
Cc: Moritz Mühlenhoff <jmm@inutil.org>, Raphael Hertzog <hertzog@debian.org>, Richard Hartmann <richih@debian.org>, 873088@bugs.debian.org, debian-lts@lists.debian.org, team@security.debian.org
Subject: Re: git-annex security issue backports
From: Antoine Beaupré <anarcat@debian.org>
Date: Thu, 26 Oct 2017 11:25:53 -0400
Message-id: <[🔎] 87tvymkk1q.fsf@angela.anarc.at>
In-reply-to: <[🔎] 20171026151434.ep3cfzbky3nw4dbq@centurion.befour.org>
References: <20170829135325.4ajhaygiwjlwfeh3@home.ouaza.com> <87y3p0ozap.fsf@curie.anarc.at> <87efqqpv5p.fsf@curie.anarc.at> <20170929165632.tpbeqxhfsqzprvnq@eldamar.local> <[🔎] 20171012185313.iskpd7ylpwbvmijc@pisco.westfalen.local> <[🔎] 878tg2c7wb.fsf@curie.anarc.at> <[🔎] 87wp3ikmf0.fsf@angela.anarc.at> <[🔎] 20171026151434.ep3cfzbky3nw4dbq@centurion.befour.org>

On 2017-10-26 11:14:34, Sébastien Delafond wrote:
> On Oct/26, Antoine Beaupré wrote:
>> I have also backported joey's patch to jessie. It was simpler than
>> wheezy because the code is much more similar. The resulting patch is
>> available here:
>> 
>> https://gitlab.com/anarcat/git-annex/commit/58daf6cbe4c1ea1cf71f3a538a0e27b5075c7265
>> 
>> As expected, the patch Joey provided applies fine on stretch and
>> should be applied and uploaded as-is. This time, it's in
>> debian/patches because the package is non-native since stretch:
>> 
>> https://gitlab.com/anarcat/git-annex/commit/115585df48dce16aa702663dab220de625b9de7d
>> 
>> I can do the upload if you authorize me. The above are not *exactly*
>> debdiffs, but they are pretty close, so I hope that's sufficient for
>> review.
>
> Thank you for backporting those.
>
> For the jessie debdiff, please change the version to 5.20141125+deb8u1,
> and target jessie-security. The stretch one looks good as is.
>
> Make sure you build both with -sa, and then you can upload.

Right, how does that look then?

https://gitlab.com/anarcat/git-annex/commit/b21ccd25ecd4cad0efcc8f4f0c94ad99ce32cd04

Then I can just upload this to security-master?

A.
-- 
In god we trust, others pay cash.
                        - Richard Desjardins, Miami

Reply to:

Follow-Ups:
- Re: git-annex security issue backports
  - From: Sébastien Delafond <seb@debian.org>

References:
- Re: git-annex security issue backports
  - From: Moritz Mühlenhoff <jmm@inutil.org>
- Re: git-annex security issue backports
  - From: Antoine Beaupré <anarcat@debian.org>
- Re: git-annex security issue backports
  - From: Antoine Beaupré <anarcat@debian.org>
- Re: git-annex security issue backports
  - From: Sébastien Delafond <seb@debian.org>

Prev by Date: Re: git-annex security issue backports
Next by Date: Re: Wheezy update of mosquitto?
Previous by thread: Re: git-annex security issue backports
Next by thread: Re: git-annex security issue backports
Index(es):
- Date
- Thread