Your message dated Fri, 17 Apr 2015 20:41:54 +0200 with message-id <20150417184154.GA29616@ugent.be> and subject line Re: Bug#782779: unblock: debian-security-support/2015.04.04 has caused the Debian Bug report #782779, regarding unblock: debian-security-support/2015.04.04 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 782779: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782779 Debian Bug Tracking System Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: submit@bugs.debian.org
- Subject: unblock: debian-security-support/2015.04.04
- From: Holger Levsen <holger@layer-acht.org>
- Date: Fri, 17 Apr 2015 20:24:37 +0200
- Message-id: <[🔎] 201504172024.39125.holger@layer-acht.org>
Package: release.debian.org Severity: normal User: release.debian.org@packages.debian.org Usertags: unblock x-debbugs-cc: team@security.debian.org Dear release team, please unblock and age debian-security-support/2015.04.04 so that it will be somewhat up2date when we release :) The changes are trivial (and attached): $ debdiff debian-security-support_2014.12.17.dsc debian-security- support_2015.04.04.dsc|diffstat debian/changelog | 13 +++++++++++++ security-support-ended.deb6 | 2 ++ security-support-ended.deb7 | 9 +++++++++ security-support-limited | 6 +++--- 4 files changed, 27 insertions(+), 3 deletions(-) cheers, Holgerdiff -Nru debian-security-support-2014.12.17/debian/changelog debian-security-support-2015.04.04/debian/changelog --- debian-security-support-2014.12.17/debian/changelog 2014-12-17 20:12:40.000000000 +0100 +++ debian-security-support-2015.04.04/debian/changelog 2015-04-06 18:59:22.000000000 +0200 @@ -1,3 +1,16 @@ +debian-security-support (2015.04.04) unstable; urgency=high + + * Add wireshark to unsupported packages in Squeeze (Closes: #774312) + * Remove php5 and memcached from "limited support": Debian's PHP support is not + different from upstream's and is well understood by the community. The same + applies to memcached (Closes: #775582) + * Mark chromium-browser as unsupported in Wheezy (Closes: #776904). The + same applies to rails + * Mark piwigo as unsupported in Squeeze (Closes: #779104) + * Mark xulrunner as unsupported + + -- Moritz Muehlenhoff <jmm@debian.org> Mon, 04 Apr 2015 18:11:20 +0100 + debian-security-support (2014.12.17) unstable; urgency=high * Add to list of packages not supported in squeeze-lts: diff -Nru debian-security-support-2014.12.17/security-support-ended.deb6 debian-security-support-2015.04.04/security-support-ended.deb6 --- debian-security-support-2014.12.17/security-support-ended.deb6 2014-12-17 20:12:36.000000000 +0100 +++ debian-security-support-2015.04.04/security-support-ended.deb6 2015-04-06 18:56:27.000000000 +0200 @@ -35,6 +35,7 @@ moodle 1.9.9.dfsg2-2.1+squeeze3 2014-05-31 Not supported in squeeze LTS movabletype-opensource 4.3.8+dfsg-0+squeeze4 2014-05-31 Not supported in squeeze LTS openswan 1:2.6.28+dfsg-5+squeeze2 2014-05-31 Not supported in squeeze LTS +piwigo 2.1.2-3 2015-02-24 Not supported in squeeze LTS qemu 0.12.5+dfsg-3squeeze4 2014-12-11 https://bugs.debian.org/772858 qemu-kvm 0.12.5+dfsg-5+squeeze11 2014-05-31 Not supported in squeeze LTS rails 2.3.5-1.2+squeeze8 2014-05-31 Not supported in squeeze LTS @@ -46,6 +47,7 @@ turba2 2.3.4+debian0-1 2014-05-31 Not supported in squeeze LTS typo3-src 4.3.9+dfsg1-1+squeeze9 2014-05-31 Not supported in squeeze LTS vlc 1.1.3-1squeeze6 2014-05-31 Not supported in squeeze LTS +wireshark 1.2.11-6+squeeze15 2014-12-31 Not supported in squeeze LTS for analysis of untrusted traffic xen 4.0.1-5.11 2014-05-31 Not supported in squeeze LTS xen-qemu-dm-4.0 4.0.1-2+squeeze3 2014-05-31 Not supported in squeeze LTS zabbix 1:1.8.2-1squeeze5 2014-05-31 Not supported in squeeze LTS diff -Nru debian-security-support-2014.12.17/security-support-ended.deb7 debian-security-support-2015.04.04/security-support-ended.deb7 --- debian-security-support-2014.12.17/security-support-ended.deb7 2014-05-30 15:04:40.000000000 +0200 +++ debian-security-support-2015.04.04/security-support-ended.deb7 2015-04-06 18:58:23.000000000 +0200 @@ -11,3 +11,12 @@ # In the program's output, this is prefixed with "Details:" iceape 2.7.12-1+alpha 2013-12-16 https://lists.debian.org/debian-security-announce/2013/msg00233.html +chromium-browser 37.0.2062.120-1~deb7u1 2015-01-31 https://lists.debian.org/debian-security-announce/2015/msg00031.html +ruby-actionmailer-2.3 2.3.14-3 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +ruby-actionpack-2.3 2.3.14-5 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +ruby-activerecord-2.3 2.3.14-6 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +ruby-activeresource-2.3 2.3.14-3 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +ruby-actionmailer-2.3 2.3.14-3 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +ruby-activesupport-2.3 2.3.14-7 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +ruby-rails-2.3 2.3.14-4 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html + diff -Nru debian-security-support-2014.12.17/security-support-limited debian-security-support-2015.04.04/security-support-limited --- debian-security-support-2014.12.17/security-support-limited 2014-12-06 13:43:48.000000000 +0100 +++ debian-security-support-2015.04.04/security-support-limited 2015-04-06 18:59:36.000000000 +0200 @@ -14,13 +14,13 @@ kde4libs khtml has no security support upstream, only for use on trusted content libv8-3.14 Not covered by security support, only suitable for trusted content ltp Pure Testsuite, only supported on non-production non-multiuser systems -memcached Attacks that require an attacker to be able to access the memcached port/sock are not supported, it's running as nobody and in a typical setup attackers don't have access to this mozjs Not covered by security support, only suitable for trusted content mozjs17 Not covered by security support, only suitable for trusted content mozjs24 Not covered by security support, only suitable for trusted content ocsinventory-server Only supported behind an authenticated HTTP zone -php5 See README.Debian.security for the PHP security policy -pidgin Support in oldstable is limited to IRC, Jabber/XMPP, Sametime and SIMPLE +pidgin Support in squeeze is limited to IRC, Jabber/XMPP, Sametime and SIMPLE qtwebkit No security support upstream and backports not feasible, only for use on trusted content sql-ledger Only supported behind an authenticated HTTP zone webkitgtk No security support upstream and backports not feasible, only for use on trusted content +xulrunner Xulrunner was added in Wheezy 7.8 to fix build failures since Iceweasel 31 no longer provides a Xul lib. It's not covered by security support +Attachment: signature.asc
Description: This is a digitally signed message part.
--- End Message ---
--- Begin Message ---
- To: Holger Levsen <holger@layer-acht.org>, 782779-done@bugs.debian.org
- Subject: Re: Bug#782779: unblock: debian-security-support/2015.04.04
- From: Ivo De Decker <ivodd@debian.org>
- Date: Fri, 17 Apr 2015 20:41:54 +0200
- Message-id: <20150417184154.GA29616@ugent.be>
- In-reply-to: <[🔎] 201504172024.39125.holger@layer-acht.org>
- References: <[🔎] 201504172024.39125.holger@layer-acht.org>
Hi, On Fri, Apr 17, 2015 at 08:24:37PM +0200, Holger Levsen wrote: > please unblock and age debian-security-support/2015.04.04 so that it will be > somewhat up2date when we release :) Unblocked. As you noted on irc, age was not needed. Cheers, Ivo
--- End Message ---