Hi Tomasz, Le samedi, 19 janvier 2013 14.37:39, Tomasz Muras a écrit : > CVE numbers added, new changelog entry copied below for your > convenience. MSA-13-0001 has no CVE assigned. Newest package available at: > dget http://dev.agilesparkle.com/moodle_2.2.3.dfsg-2.6~wheezy2.dsc Seems good to me; now waiting on the release team's opinion > > Please also prepare an update of Moodle 2.2.6+ for unstable to ensure > > that unstable gets the fixes targetted for Wheezy too. As unstable > > already diverged from the wheezy version, I think updating the unstable > > packaging to the latest 2.2 version is safe. I will also sponsor this > > version (after review, of course). > > I want to move to the latest 2.4 in unstable, I'm just waiting for > wheezy to be released to continue packaging work. I needed 2.2 in stable > only because the upgrade path is 1.9 -> 2.2 -> 2.4. Well… The policy is to have unstable "at least as well supported security-wise as testing", so we need a latest 2.2 (or a 2.2 with backports of the fixes proposed for t-p-u) approximatively in sync with the t-p-u upload; ideally before. That said, I can prepare the 2.2 upload to unstable if you want, but I think it's a git merge away. Cheers, OdyX
Attachment:
signature.asc
Description: This is a digitally signed message part.