Looking at holes that are fixed in unstable but are still open in testing, from http://merkel.debian.org/~joeyh/testing-security.html : * playmidi 2.4debian-3 needed, have 2.4debian-2 for DSA-641-1 OOD on mipsel, 4 days old now * koffice 1:1.3.5-1 needed, have 1:1.3.4-1 for CAN-2004-1125 Missing builds, blocked by kdelibs. * vim 1:6.3-058+1 needed, have 1:6.3-054+1 for CAN-2005-0069 Just uploaded. Blocked by kdelibs, indirectly by alsa-lib, also by glib2.0 and ruby1.8. * kdelibs 4:3.3.2-1 needed, have 4:3.3.1-4 for DSA-631-1 Uploaded at medium urgency, still 3 days to wait. Could be blocked by alsa-lib, which has missing builds on 3 arches and will not go in for 7 more days. Suggest raising the urgency of alsa-lib. * namazu2 2.0.14-1 needed, have 2.0.13-4 for DSA-627-1 OOD on arm, *13* days old now. * dillo 0.8.3-1 needed, have 0.8.1-1 for CAN-2005-0012 OOD on mipsel, 10 days old. * imagemagick 6:6.0.6.2-2.1 needed, have 6:6.0.6.2-1.6 for CAN-2005-0005 Too young. * kernel-source-2.4.27 2.4.27-7 needed, have 2.4.27-6 for CAN-2004-1074 * kernel-source-2.4.27 2.4.27-7 needed, have 2.4.27-6 for CAN-2004-1068 * kernel-source-2.4.27 2.4.27-8 needed, have 2.4.27-6 for CAN-2004-1056 * kernel-source-2.4.27 2.4.27-7 needed, have 2.4.27-6 for CAN-2004-0814 * kernel-source-2.4.27 2.4.27-8 needed, have 2.4.27-6 for CAN-2004-1235 Blocked by RC bugs which are not new in -8 (and may get fixed in -9). *20* days old. At least for i386 the kernel-images built from this are in testing already anyway. Should be forced in. * fluxbox 0.9.11-1 needed, have 0.9.9-1 for CAN-2004-1204 3 more days delay on this low urgency upload * gpdf 2.8.2-1 needed, have 2.8.0-1 for CAN-2004-1125 Recent upload, not built on most arches. Could be blocked by new RC bug for YA security hole. * kernel-image-2.6.8-i386 2.6.8-12 needed, have 2.6.8-10 for CAN-2004-1125 Needs to go in at the same time as kernel-latest-2.6-i386. I think this pair could use a hint. * xpdf 3.00-12 needed, have 3.00-11 for DSA-648-1 * mysql-dfsg 4.0.23-3 needed, have 4.0.23-1 for DSA-647-1 * mysql-dfsg-4.1 4.1.8a-6 needed, have 4.1.8a-1 for DSA-647-1 * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0097 * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0096 * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0095 * squid 2.5.7-4 needed, have 2.5.7-3 for CAN-2005-0094 * libapache-mod-auth-radius 1.5.7-6 needed, have 1.5.7-5 for CAN-2005-0108 All uploaded today. Other unfixed security bugs: 12 Number of packages in the past week that were fixed in testing at time of DSA: 3 Number unfixed in testing at time of DSA: 7 -- see shy jo
Attachment:
signature.asc
Description: Digital signature