Bug#869949: jessie-pu: package ipsec-tools/1:0.8.2+20140711-2+deb8u1

To: Noah Meyerhans <noahm@debian.org>, 869949@bugs.debian.org
Subject: Bug#869949: jessie-pu: package ipsec-tools/1:0.8.2+20140711-2+deb8u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 30 Jul 2017 22:51:36 +0100
Message-id: <[🔎] 1501451496.29960.45.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 869949@bugs.debian.org
In-reply-to: <[🔎] 150119287556.18923.8961330549195652900.reportbug@ctrl.internal.morgul.net>
References: <[🔎] 150119287556.18923.8961330549195652900.reportbug@ctrl.internal.morgul.net>

Control: tags -1 + confirmed

On Thu, 2017-07-27 at 15:01 -0700, Noah Meyerhans wrote:
> I'd like to update ipsec-tools in the next oldstable point release to
> address a security vulnerability in which a remote unauthenticated
> attacker could cause racoon to exhause CPU resources resulting in a
> denial-of-service. Because the issue has been known for some time, the
> security team does not feel that this warrants a DSA. Instead it should
> be updated via (old)stable-updates. See
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867986 for details.

+ipsec-tools (1:0.8.2+20140711-2+deb8u2) oldstable; urgency=medium

We'd prefer that codenames were used for changelog distributions - i.e.
"jessie" here.

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#869949: jessie-pu: package ipsec-tools/1:0.8.2+20140711-2+deb8u1
  - From: Noah Meyerhans <noahm@debian.org>

Prev by Date: Processed: Re: Bug#869949: jessie-pu: package ipsec-tools/1:0.8.2+20140711-2+deb8u1
Next by Date: Processed: Re: Bug#869920: stretch-pu: package whois/5.2.17+deb9u1
Previous by thread: Processed: Re: Bug#869949: jessie-pu: package ipsec-tools/1:0.8.2+20140711-2+deb8u1
Next by thread: Bug#869956: transition: libevent 2.1.8-stable-2
Index(es):
- Date
- Thread