[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#782779: marked as done (unblock: debian-security-support/2015.04.04)

Your message dated Fri, 17 Apr 2015 20:41:54 +0200
with message-id <20150417184154.GA29616@ugent.be>
and subject line Re: Bug#782779: unblock: debian-security-support/2015.04.04
has caused the Debian Bug report #782779,
regarding unblock: debian-security-support/2015.04.04
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
782779: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782779
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock
x-debbugs-cc: team@security.debian.org

Dear release team,

please unblock and age debian-security-support/2015.04.04 so that it will be 
somewhat up2date when we release :)

The changes are trivial (and attached):

$ debdiff debian-security-support_2014.12.17.dsc debian-security-
support_2015.04.04.dsc|diffstat
 debian/changelog            |   13 +++++++++++++
 security-support-ended.deb6 |    2 ++
 security-support-ended.deb7 |    9 +++++++++
 security-support-limited    |    6 +++---
 4 files changed, 27 insertions(+), 3 deletions(-)


cheers,
	Holger

diff -Nru debian-security-support-2014.12.17/debian/changelog debian-security-support-2015.04.04/debian/changelog
--- debian-security-support-2014.12.17/debian/changelog	2014-12-17 20:12:40.000000000 +0100
+++ debian-security-support-2015.04.04/debian/changelog	2015-04-06 18:59:22.000000000 +0200
@@ -1,3 +1,16 @@
+debian-security-support (2015.04.04) unstable; urgency=high
+
+  * Add wireshark to unsupported packages in Squeeze (Closes: #774312)
+  * Remove php5 and memcached from "limited support": Debian's PHP support is not 
+    different from upstream's and is well understood by the community. The same
+    applies to memcached (Closes: #775582)
+  * Mark chromium-browser as unsupported in Wheezy (Closes: #776904). The
+    same applies to rails
+  * Mark piwigo as unsupported in Squeeze (Closes: #779104)
+  * Mark xulrunner as unsupported
+
+ -- Moritz Muehlenhoff <jmm@debian.org>  Mon, 04 Apr 2015 18:11:20 +0100
+
 debian-security-support (2014.12.17) unstable; urgency=high
 
   * Add to list of packages not supported in squeeze-lts:
diff -Nru debian-security-support-2014.12.17/security-support-ended.deb6 debian-security-support-2015.04.04/security-support-ended.deb6
--- debian-security-support-2014.12.17/security-support-ended.deb6	2014-12-17 20:12:36.000000000 +0100
+++ debian-security-support-2015.04.04/security-support-ended.deb6	2015-04-06 18:56:27.000000000 +0200
@@ -35,6 +35,7 @@
 moodle          1.9.9.dfsg2-2.1+squeeze3 2014-05-31 Not supported in squeeze LTS
 movabletype-opensource  4.3.8+dfsg-0+squeeze4 2014-05-31 Not supported in squeeze LTS
 openswan        1:2.6.28+dfsg-5+squeeze2 2014-05-31 Not supported in squeeze LTS
+piwigo          2.1.2-3                 2015-02-24 Not supported in squeeze LTS
 qemu            0.12.5+dfsg-3squeeze4   2014-12-11 https://bugs.debian.org/772858
 qemu-kvm        0.12.5+dfsg-5+squeeze11 2014-05-31 Not supported in squeeze LTS
 rails           2.3.5-1.2+squeeze8      2014-05-31 Not supported in squeeze LTS
@@ -46,6 +47,7 @@
 turba2          2.3.4+debian0-1         2014-05-31 Not supported in squeeze LTS
 typo3-src       4.3.9+dfsg1-1+squeeze9  2014-05-31 Not supported in squeeze LTS
 vlc             1.1.3-1squeeze6         2014-05-31 Not supported in squeeze LTS
+wireshark       1.2.11-6+squeeze15      2014-12-31 Not supported in squeeze LTS for analysis of untrusted traffic
 xen             4.0.1-5.11              2014-05-31 Not supported in squeeze LTS
 xen-qemu-dm-4.0 4.0.1-2+squeeze3        2014-05-31 Not supported in squeeze LTS
 zabbix          1:1.8.2-1squeeze5       2014-05-31 Not supported in squeeze LTS
diff -Nru debian-security-support-2014.12.17/security-support-ended.deb7 debian-security-support-2015.04.04/security-support-ended.deb7
--- debian-security-support-2014.12.17/security-support-ended.deb7	2014-05-30 15:04:40.000000000 +0200
+++ debian-security-support-2015.04.04/security-support-ended.deb7	2015-04-06 18:58:23.000000000 +0200
@@ -11,3 +11,12 @@
 #    In the program's output, this is prefixed with "Details:"
 
 iceape          2.7.12-1+alpha          2013-12-16 https://lists.debian.org/debian-security-announce/2013/msg00233.html
+chromium-browser 37.0.2062.120-1~deb7u1 2015-01-31 https://lists.debian.org/debian-security-announce/2015/msg00031.html
+ruby-actionmailer-2.3 2.3.14-3          2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+ruby-actionpack-2.3 2.3.14-5          2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+ruby-activerecord-2.3 2.3.14-6          2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+ruby-activeresource-2.3 2.3.14-3          2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+ruby-actionmailer-2.3 2.3.14-3          2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+ruby-activesupport-2.3 2.3.14-7         2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+ruby-rails-2.3 2.3.14-4          2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html
+
diff -Nru debian-security-support-2014.12.17/security-support-limited debian-security-support-2015.04.04/security-support-limited
--- debian-security-support-2014.12.17/security-support-limited	2014-12-06 13:43:48.000000000 +0100
+++ debian-security-support-2015.04.04/security-support-limited	2015-04-06 18:59:36.000000000 +0200
@@ -14,13 +14,13 @@
 kde4libs        khtml has no security support upstream, only for use on trusted content
 libv8-3.14      Not covered by security support, only suitable for trusted content
 ltp             Pure Testsuite, only supported on non-production non-multiuser systems
-memcached       Attacks that require an attacker to be able to access the memcached port/sock are not supported, it's running as nobody and in a typical setup attackers don't have access to this
 mozjs           Not covered by security support, only suitable for trusted content
 mozjs17         Not covered by security support, only suitable for trusted content
 mozjs24         Not covered by security support, only suitable for trusted content
 ocsinventory-server Only supported behind an authenticated HTTP zone
-php5            See README.Debian.security for the PHP security policy
-pidgin          Support in oldstable is limited to IRC, Jabber/XMPP, Sametime and SIMPLE
+pidgin          Support in squeeze is limited to IRC, Jabber/XMPP, Sametime and SIMPLE
 qtwebkit        No security support upstream and backports not feasible, only for use on trusted content
 sql-ledger      Only supported behind an authenticated HTTP zone
 webkitgtk       No security support upstream and backports not feasible, only for use on trusted content
+xulrunner       Xulrunner was added in Wheezy 7.8 to fix build failures since Iceweasel 31 no longer provides a Xul lib. It's not covered by security support
+

Attachment: signature.asc
Description: This is a digitally signed message part.


--- End Message ---
--- Begin Message --- 
Hi,

On Fri, Apr 17, 2015 at 08:24:37PM +0200, Holger Levsen wrote:
> please unblock and age debian-security-support/2015.04.04 so that it will be 
> somewhat up2date when we release :)

Unblocked. As you noted on irc, age was not needed.

Cheers,

Ivo

--- End Message ---
Reply to: