[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#618026: ibid: Ibid 0.1.1 contains 3 security fixes

tag 618026 + squeeze moreinfo - upstream patch security
retitle 618026 pu: package ibid/0.1.0+dfsg-2+squeeze1

On Wed, 2011-09-07 at 22:07 +0200, Stefano Rivera wrote:
> reassign 618026 release.debian.org

If you're going to do that, you need to either (preferably) CC the
receiving package on your mail, or send a separate mail.  What tends to
happen (as in this case) is that the control@ reassign gets processed
after the rest of the mail has been received and the new package only
gets the control@ output with no other information.

> > Ibid 0.1.1 fixes 3 security issues [0]. They aren't particularly serious, but
> > should probably be addressed.
> Right, clearly not significant enough for the usual security route.
> Here's a stable targeted debdiff, with an additional fix.

Thanks for working on this.  One quick question - doesn't this change:

+    - logfile-visibility-567576.patch: Channels must be explicitly configured
+      to have publicly readable logs. (LP: #567576)

have the potential to at least confuse users who are expecting the logs
to be created in a publicly readable manner?



Reply to: