Re: privoxy stretch package prepared

To: Roland Rosenfeld <roland@debian.org>
Cc: Debian LTS <debian-lts@lists.debian.org>
Subject: Re: privoxy stretch package prepared
From: Utkarsh Gupta <utkarsh@debian.org>
Date: Sat, 6 Feb 2021 19:25:43 +0530
Message-id: <[🔎] CAPP0f954-NtAKrokVO7WJQnS8iAfcpuRr7aOBSSn_ChEoA9yCw@mail.gmail.com>
In-reply-to: <[🔎] 20210206110641.nxcyp6fipw3vt6vb@dinghy.sail.spinnaker.de>
References: <[🔎] 20210206110641.nxcyp6fipw3vt6vb@dinghy.sail.spinnaker.de>

Hi Roland,

On Sat, Feb 6, 2021 at 4:43 PM Roland Rosenfeld <roland@debian.org> wrote:
> As the maintainer of privoxy package, I just checked all new CVEs on
> https://security-tracker.debian.org/tracker/source-package/privoxy and
> prepared a stretch package with the patches fixing all CVEs.
>
> Only the patch for CVE-2021-20214 was not included, since this CVE
> doesn't affect 3.0.26 (the fixed tags "refresh-delay" and
> "tags-expire" where introduced with 3.0.27), this should be changed in
> the security-tracker.
>
> Since all other CVEs are tagged "minor issue" on security-tracker, I'm
> not sure whether it's worth doing a LTS upload for this.
>
> If you think so, feel free to use it or tell me, what I have to do to
> upload it...
>
> A patch agains 3.0.26-3 is attached.

Thanks for your pro-active work on this! \o/
I'll go through the patch and other things and will get back to you if
I have any questions or will upload as is :)


- u

Reply to:

Follow-Ups:
- Re: privoxy stretch package prepared
  - From: Utkarsh Gupta <utkarsh@debian.org>

References:
- privoxy stretch package prepared
  - From: Roland Rosenfeld <roland@debian.org>

Prev by Date: privoxy stretch package prepared
Next by Date: Re: privoxy stretch package prepared
Previous by thread: privoxy stretch package prepared
Next by thread: Re: privoxy stretch package prepared
Index(es):
- Date
- Thread