On 12/11/14 14:09, Cyril Brulebois wrote: > Control: tag -1 moreinfo > > Hi, > > Carlos Alberto Lopez Perez <clopez@igalia.com> (2014-11-12): >> +aircrack-ng (1:1.2-0~beta3-2) unstable; urgency=high >> + >> + * Fix the following security vulnerabilities: (Closes: #767979) >> + * CVE-2014-8321 - GPS stack overflow. >> + * CVE-2014-8322 - tcp_test stack overflow. >> + * CVE-2014-8323 - buddy-ng missing checkin data format. >> + * CVE-2014-8324 - net_get missing check for invalid values. >> + * Add missing dh-python package to Build-Depends. > > The freeze policy[1] warmly recommends documenting changes verbosely. > What were the consequences of the missing dh-python build-dep? Previous > uploads don't seem to have FTBFS'd; missing functionalities in the > resulting binary packages, missing dependencies, some other things? > > 1. https://release.debian.org/jessie/freeze_policy.html > I noticed this because when building the new version of the package on a fresh jessie chroot (with pdebuild) this showed on the log: make[1]: Leaving directory '/tmp/buildd/aircrack-ng-1.2-0~beta3' dh_installdocs dh_installchangelogs dh_installexamples dh_installman dh_python2 W: dh_python2:479: Please add dh-python package to Build-Depends dh_perl dh_link dh_compress dh_fixperms dh_strip dh_makeshlibs dh_shlibdeps dh_installdeb dh_gencontrol [...] So I added it. Investigating a bit more, this was introduced by: https://alioth.debian.org/scm/loggerhead/pkg-python/python-defaults-debian/revision/401 There is no difference at all on the binary packages produced. I compared the debs produced with this build-dep and without it, they are identical.
Attachment:
signature.asc
Description: OpenPGP digital signature