Bug#796115: RM: php-zend-xml/1.0.0-1

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#796115: RM: php-zend-xml/1.0.0-1
From: David Prévot <david@tilapin.org>
Date: Wed, 19 Aug 2015 15:28:47 +0200
Message-id: <[🔎] 55D4848F.7020406@tilapin.org>
Reply-to: David Prévot <david@tilapin.org>, 796115@bugs.debian.org

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: rm

Please, remove php-zend-xml from Jessie (it’s not in Wheezy). It’s
affected by CVE-2015-5161. Even if of low impact in Jessie (since PHP is
already fixed), there is little point in keeping this useless package as
is (as documented in #785489, having it in stable was actually an
error). The security team agrees with this approach if you are OK with it.

I will follow up with a removal request from Sid once this package is
removed from stable (or sooner if you prefer).

Regards

David

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

Prev by Date: Bug#796112: jessie-pu: package syslinux/3:6.03+dfsg-5+deb8u1
Next by Date: Bug#795911: Upload of gtk+3.0/3.14.5-1+deb8u1 to Jessie will be accepted by the Stable Release Managers
Previous by thread: Processed: Re: Bug#796112: jessie-pu: package syslinux/3:6.03+dfsg-5+deb8u1
Next by thread: Bug#795911: Upload of gtk+3.0/3.14.5-1+deb8u1 to Jessie will be accepted by the Stable Release Managers
Index(es):
- Date
- Thread