Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1

To: Paul Slootman <paul@debian.org>, 924642@bugs.debian.org
Subject: Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 31 Mar 2019 19:57:46 +0100
Message-id: <[🔎] 1554058666.2650.44.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 924642@bugs.debian.org
In-reply-to: <[🔎] 155264541946.15730.14674871842467557794.reportbug@wurtel-ws.home.wurtel.net>
References: <[🔎] 155264541946.15730.14674871842467557794.reportbug@wurtel-ws.home.wurtel.net> <[🔎] 155264541946.15730.14674871842467557794.reportbug@wurtel-ws.home.wurtel.net>

Control: tags -1 + moreinfo

On Fri, 2019-03-15 at 11:23 +0100, Paul Slootman wrote:
> There are a couple of CVEs that have been fixed by 3.1.2-1+deb9u2.
> After discussing this with a member of the security team it was not
> considered important enough to warrant a DSA, but it would be good if
> it
> could be included in a point release for stretch.
> 
> The changelog is:
> 
>   * Apply CVEs from 2016 to the zlib code.
>     closes:#924509
> 
> The only change was the addition of 4 patches to the zlib code.
> 
> The uploaded version was compiled on a stretch system.
> 

There doesn't appear to be an uploaded version anywhere that I can see.

Please attach a source debdiff to this report.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

References:
- Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1
  - From: Paul Slootman <paul@debian.org>

Prev by Date: Bug#926124: unblock: weston/5.0.0-3
Next by Date: Processed: Re: Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1
Previous by thread: Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1
Next by thread: Bug#924642: stretch-pu: package rsync/3.1.2-1+deb9u1
Index(es):
- Date
- Thread