security fix dependency

To: debian-mentors@lists.debian.org
Subject: security fix dependency
From: Laszlo 'GCS' Boszormenyi <gcs@lsc.hu>
Date: Thu, 29 Jul 2004 23:41:37 +0200
Message-id: <[🔎] 20040729214137.GA30231@pooh>
Mail-followup-to: debian-mentors@lists.debian.org

Dear Mentors,

 I have a seemingly stupid question. Say I am not a DD yet, and has a
security bug in a package I help maintaining. Upstream fixed it, so the
package is ready, but upstream requires new library version from a
dependency than the current Debian version. Asked the library maintainer
recently to upgrade his package, but no answer yet. As the lib is small,
and it's new upstream version contains only bugfixes, I have packaged
it, based on the original maintainer's package. My questions:
- would it be wise to upload the lib to a delayed queue and note the
  maintainer or not?
- how should I change the version numbering? If I use the new upstream
  version, then lintian correctly see that as I am not in the Uploaders
  field, the packaging is an NMU but with wrong version number...

Thanks,
Laszlo/GCS

Reply to:

Follow-Ups:
- Re: security fix dependency
  - From: Matthew Palmer <mpalmer@debian.org>
- Re: security fix dependency
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: security fix dependency
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: RFS: gif2png
Next by Date: Re: security fix dependency
Previous by thread: RFS: gif2png
Next by thread: Re: security fix dependency
Index(es):
- Date
- Thread