[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: unfixed security holes in testing



On Thu, Dec 30, 2004 at 04:12:35PM -0500, Joey Hess wrote:
> YA report on security holes that are fixed in unstable but not yet in
> testing. Executive summary: gcc-3.4 is blocking many security fixes,

I told britney earlier today to force gcc-3.4 and libunwind (ignoring
the out-of-date mips binaries), so that may get sorted out tonight. Of
course if the mips stuff ends up uninstallable then britney still won't
take the change. ftpmaster action preferred here.

> Also, a RM should look at mtr.
[...]
> mtr 0.67-1 needed, have 0.58-1 for CAN-2004-1224
> 	Frozen, fix is in new upstream version.
> 	Needs RM dsecision or t-p-u upload.

Thanks, mtr 0.67-1 in unstable approved. mtr-tiny's dependencies haven't
changed, which is the main thing I care about for that package.

> abcm2ps 4.8.5-1 needed, have 4.6.7-1 for CAN-2004-1258
> 	Uploaded at too low urgency (low); now 7 of 10 days old.

Urgency bumped.

Cheers,

-- 
Colin Watson                                       [cjwatson@debian.org]



Reply to: