Re: maxdb-7.5.00 packages in sid fix security problems

To: Martin Kittel <kittel@martin-kittel.de>
Cc: debian-release@lists.debian.org
Subject: Re: maxdb-7.5.00 packages in sid fix security problems
From: Steve Langasek <vorlon@debian.org>
Date: Wed, 4 May 2005 21:13:43 -0700
Message-id: <[🔎] 20050505041338.GD15424@mauritius.dodds.net>
Mail-followup-to: Martin Kittel <kittel@martin-kittel.de>, debian-release@lists.debian.org
In-reply-to: <[🔎] 4278FCEA.8000404@martin-kittel.de>
References: <[🔎] 4278FCEA.8000404@martin-kittel.de>

Hi Martin,

On Wed, May 04, 2005 at 06:48:42PM +0200, Martin Kittel wrote:
> could you please unfreeze the maxdb-7.5.00 packages in sid to allow them 
> to enter sarge? They fix a number of buffer overflows that were found in 
> the MaxDB webtools (and thus are remotely exploitable).

It would be great if you would explain to your upstream that the copyright
on a file doesn't change in the new year unless they've actually edited it
for something *other* than to change the copyright notice. :/

In the meantime, a 178,000 line diff that consists mostly of updates to
copyright notices is a great example of why we ask to avoid new upstream
versions, but it's not something that's tenable for us to review.  Could you
please extract the relevant security changes from upstream, apply them to
7.5.00.24, and upload to testing-proposed-updates?

Thanks,
-- 
Steve Langasek
postmodern programmer

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: maxdb-7.5.00 packages in sid fix security problems
  - From: Martin Kittel <debian@martin-kittel.de>

References:
- maxdb-7.5.00 packages in sid fix security problems
  - From: Martin Kittel <kittel@martin-kittel.de>

Prev by Date: Re: Security updates for horde packages
Next by Date: Re: libusb status
Previous by thread: maxdb-7.5.00 packages in sid fix security problems
Next by thread: Re: maxdb-7.5.00 packages in sid fix security problems
Index(es):
- Date
- Thread