Please remove libdevice-cdio-perl 0.2.4-1 from testing

To: debian-release@lists.debian.org
Cc: debian-perl@lists.debian.org
Subject: Please remove libdevice-cdio-perl 0.2.4-1 from testing
From: "Martín Ferrari" <martin.ferrari@gmail.com>
Date: Wed, 1 Aug 2007 00:36:19 +0100
Message-id: <[🔎] b9800b70707311636y29d0b84dm99b9ddac95c377bd@mail.gmail.com>

Hi,

This is a new package I created a few days ago, it was NEW on the
20th. Yesterday I found and fixed a bug in memory allocation that
could trigger some memory corruption (and in my testing an immediate
abort). I think it's very unlikely to be a security problem, and if it
were, you should have to be fooled to download and open with this lib
a specially crafted ISO image (and the lib is not currently used by
any package in the archive).

But just in case I prepared an urgency=medium release, which was
promptly uploaded by Damyan Ivanov. I thought this would have been
enough to prevent the migration to testing, so I didn't file an RC bug
against it.

It seems that we weren't fast enough as the old version has just made
its way to testing. So, please remove it, the corrected version is
already in unstable.

Thanks.

-- 
Martín Ferrari

Reply to:

Prev by Date: binNMUs for rss-glx
Previous by thread: binNMUs for rss-glx
Index(es):
- Date
- Thread