Re: Stable update of dajaxice

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Cc: debian-release@lists.debian.org, team@security.debian.org
Subject: Re: Stable update of dajaxice
From: Angel Abad <angelabad@gmail.com>
Date: Thu, 24 Feb 2011 12:27:21 +0100
Message-id: <[🔎] AANLkTimsCHVy=WAUGqMWVNFx=QcQiYXEBasGf-u6rJFj@mail.gmail.com>
In-reply-to: <[🔎] 67b70d29ecd84761b18e1d14ae57fac9.squirrel@adsl.funkybadger.org>
References: <[🔎] 4D662FF7.40700@gmail.com> <[🔎] 67b70d29ecd84761b18e1d14ae57fac9.squirrel@adsl.funkybadger.org>

2011/2/24 Adam D. Barratt <adam@adam-barratt.org.uk>:
> Hi,
>
> On Thu, February 24, 2011 10:16, Angel Abad wrote:
>> I've prepared an upload to stable for package dajaxice, since
>> python-django was patched for problems related with crsf cookies,
>> dajaxice is unusable in squeeze.

> Was this issue introduced as a side-effect of the changes in DSA-2163-1,
> specifically those marked as backwardly-incompatible?  If so then it would
> be good if this could also be fixed via the security archive, as the
> regression was introduced in a security update (albeit in a different
> package); I've CCed the security team for comment.

Yes, you are right is a side-effect of DSA-2163-1 - CVE-2011-0696

Regards,

> Regards,
>
> Adam
>
>



-- 
Angel Abad
angelabad@gmail.com | angelabad@ubuntu.com | angelabad@fsfe.org
http://www.pastelero.net
FPR: EBF6 080D 59D4 008A DF47  00D4 098D AE47 EE3B C279

Reply to:

Follow-Ups:
- Re: Stable update of dajaxice
  - From: Thijs Kinkhorst <thijs@debian.org>

References:
- Stable update of dajaxice
  - From: Angel Abad <angelabad@gmail.com>
- Re: Stable update of dajaxice
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Re: Stable update of dajaxice
Next by Date: Re: RFC: use of shlib bump for libc dependency on new multiarch directories?
Previous by thread: Re: Stable update of dajaxice
Next by thread: Re: Stable update of dajaxice
Index(es):
- Date
- Thread