Re: rdflib / CVE-2019-7653

To: "Brian May" <bam@debian.org>, debian-lts@lists.debian.org
Subject: Re: rdflib / CVE-2019-7653
From: "Chris Lamb" <lamby@debian.org>
Date: Thu, 07 Mar 2019 17:37:06 -0500
Message-id: <[🔎] 818d0167-e097-4a90-9a73-30724af78699@www.fastmail.com>
In-reply-to: <[🔎] 87y35q1fru.fsf@silverfish.pri>
References: <[🔎] 874l8e2xom.fsf@silverfish.pri> <[🔎] 0d6f5ae8-a2cd-4740-95cd-ddb0242aa3cd@www.fastmail.com> <[🔎] 87y35q1fru.fsf@silverfish.pri>

Hi Brian,

> Apologies. Looks like I got the parameters to debdiff
> reversed. Repeatedly :-(

Hey, at least one is consistent!

> See attached patch.

Hmm, I'm still seeing "reversed" bits in the chunk that don't make
immediate sense to me. Perhaps we just need a more-detailed changelog
entry (rather than an explanation reply on this list) however. (For
example "debian/scripts/rdfs2dot"...?)

I also still don't grok the move to Python 3 (nor the changes to
debian/gbp.conf as it happens). It seems to go against the
general theme of being as conservative as possible in stable/
securoty updates. Again, likely one for recording for posterity in
debian/changelog rather than on this quasi-ephemeral list.


Best wishes,

-- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org 🍥 chris-lamb.co.uk
       `-

Reply to:

Follow-Ups:
- Re: rdflib / CVE-2019-7653
  - From: Brian May <bam@debian.org>
- Re: rdflib / CVE-2019-7653
  - From: Brian May <bam@debian.org>

References:
- rdflib / CVE-2019-7653
  - From: Brian May <brian@linuxpenguins.xyz>
- Re: rdflib / CVE-2019-7653
  - From: "Chris Lamb" <lamby@debian.org>
- Re: rdflib / CVE-2019-7653
  - From: Brian May <bam@debian.org>

Prev by Date: Re: rdflib / CVE-2019-7653
Next by Date: Re: ikiwiki / CVE-2019-9187
Previous by thread: Re: rdflib / CVE-2019-7653
Next by thread: Re: rdflib / CVE-2019-7653
Index(es):
- Date
- Thread