fix for 445595 - smpeg NMU

To: debian-release@lists.debian.org
Subject: fix for 445595 - smpeg NMU
From: Russell Coker <russell@coker.com.au>
Date: Mon, 25 Aug 2008 22:49:49 +1000
Message-id: <[🔎] 200808252249.50072.russell@coker.com.au>
Reply-to: russell@coker.com.au

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=445595

I have done an NMU of version 0.4.5+cvs20030824-2.1 of the smpeg package.  It 
has two lines of change as included in a patch on the above bug report.  
There has been no response from the maintainer, the bug is almost a year old, 
and it has security implications.

http://etbe.coker.com.au/2008/08/11/executable-stacks-lenny/

The above blog post has some background.

I think it would be good to get this into Lenny.  I expect that including an 
NMU at late notice would be something you would prefer not to do.  But given 
that it reduces security by permitting stack overflow bugs in applications 
that use it I think it's worthy of inclusion.

I waited two weeks after proposing an NMU and blogging about it with no 
response.  If anyone was watching and had any objection I'm sure I would have 
heard it by now.

-- 
russell@coker.com.au
http://etbe.coker.com.au/          My Blog

http://www.coker.com.au/sponsorship.html Sponsoring Free Software development

Reply to:

Follow-Ups:
- Re: fix for 445595 - smpeg NMU
  - From: Pierre Habouzit <madcoder@debian.org>

Prev by Date: Re: please allow ocsinventory-agent 1:0.0.9.2repack1-3 in lenny
Next by Date: Please unblock chicken 3.2.7-2
Previous by thread: Re: [Yaird-devel] Bug#496500: yaird: fails to create initrd when running 2.6.24 etchnhalf kernel
Next by thread: Re: fix for 445595 - smpeg NMU
Index(es):
- Date
- Thread