[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

sarge security status

Looking at holes that are fixed in unstable but are still open in testing, from
http://merkel.debian.org/~joeyh/testing-security.html :

    * playmidi 2.4debian-3 needed, have 2.4debian-2 for DSA-641-1
	OOD on mipsel, 4 days old now
    * koffice 1:1.3.5-1 needed, have 1:1.3.4-1 for CAN-2004-1125
	Missing builds, blocked by kdelibs.
    * vim 1:6.3-058+1 needed, have 1:6.3-054+1 for CAN-2005-0069
	Just uploaded.
	Blocked by kdelibs, indirectly by alsa-lib, also by glib2.0 and
	ruby1.8.
    * kdelibs 4:3.3.2-1 needed, have 4:3.3.1-4 for DSA-631-1
	Uploaded at medium urgency, still 3 days to wait.
	Could be blocked by alsa-lib, which has missing builds on 3 arches
	and will not go in for 7 more days. Suggest raising the urgency of
	alsa-lib.
    * namazu2 2.0.14-1 needed, have 2.0.13-4 for DSA-627-1
	OOD on arm, *13* days old now.
    * dillo 0.8.3-1 needed, have 0.8.1-1 for CAN-2005-0012
	OOD on mipsel, 10 days old.
    * imagemagick 6:6.0.6.2-2.1 needed, have 6:6.0.6.2-1.6 for CAN-2005-0005
	Too young.
    * kernel-source-2.4.27 2.4.27-7 needed, have 2.4.27-6 for CAN-2004-1074
    * kernel-source-2.4.27 2.4.27-7 needed, have 2.4.27-6 for CAN-2004-1068
    * kernel-source-2.4.27 2.4.27-8 needed, have 2.4.27-6 for CAN-2004-1056
    * kernel-source-2.4.27 2.4.27-7 needed, have 2.4.27-6 for CAN-2004-0814
    * kernel-source-2.4.27 2.4.27-8 needed, have 2.4.27-6 for CAN-2004-1235
	Blocked by RC bugs which are not new in -8 (and may get fixed in -9).
	*20* days old.
	At least for i386 the kernel-images built from this are in testing
	already anyway. Should be forced in.
    * fluxbox 0.9.11-1 needed, have 0.9.9-1 for CAN-2004-1204
	3 more days delay on this low urgency upload
    * gpdf 2.8.2-1 needed, have 2.8.0-1 for CAN-2004-1125
	Recent upload, not built on most arches.
	Could be blocked by new RC bug for YA security hole.
    * kernel-image-2.6.8-i386 2.6.8-12 needed, have 2.6.8-10 for CAN-2004-1125
	Needs to go in at the same time as kernel-latest-2.6-i386.
	I think this pair could use a hint.
    * xpdf 3.00-12 needed, have 3.00-11 for DSA-648-1
    * mysql-dfsg 4.0.23-3 needed, have 4.0.23-1 for DSA-647-1
    * mysql-dfsg-4.1 4.1.8a-6 needed, have 4.1.8a-1 for DSA-647-1
    * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0097
    * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0096
    * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0095
    * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0094
    * libapache-mod-auth-radius 1.5.7-6 needed, have 1.5.7-5 for CAN-2005-0108
	All uploaded today.

Other unfixed security bugs: 12
Number of packages in the past week that were fixed in testing at time of DSA: 3
Number unfixed in testing at time of DSA: 7

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to: