Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1

To: 1002298@bugs.debian.org, Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Subject: Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 25 Jan 2022 18:46:16 +0000
Message-id: <[🔎] fec9f0256e5d190e6e5cf2c548ee07c05407aa45.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1002298@bugs.debian.org
In-reply-to: <[🔎] 73d2fefd4cbf5800ae2ebbdd86bc007994759bed.camel@adam-barratt.org.uk>
References: <YcJAl9rbQSJpxlGS@flow> <5c1f6dab5f87174e1fa0f06a6375b6161aebfd41.camel@adam-barratt.org.uk> <YcJAl9rbQSJpxlGS@flow> <YcTabxYt1pEV6UQf@flow> <[🔎] c903cf381819e41e40368735f391256af38c1ee9.camel@adam-barratt.org.uk> <[🔎] Yd8vruAnX+Oj+rLM@flow> <YcJAl9rbQSJpxlGS@flow> <[🔎] YeHiZtD7cFanz5kT@flow> <YcJAl9rbQSJpxlGS@flow> <[🔎] 73d2fefd4cbf5800ae2ebbdd86bc007994759bed.camel@adam-barratt.org.uk> <YcJAl9rbQSJpxlGS@flow>

On Sun, 2022-01-16 at 19:09 +0000, Adam D. Barratt wrote:
> On Fri, 2022-01-14 at 21:51 +0100, Sebastian Andrzej Siewior wrote:
> > > Speaking of latest patch version: Upstream released today .5.
> > > Would
> > > you
> > > prefer to wait with this until I upload .5 to unstable and
> > > stable/oldstable for this (and avoiding a second announcement)?
> > 
> > I assume a direct update to .5 is preferred so I attached it here.
> > Regarding the wording: in [0] upstream says that they are going to
> > block 0.102 and earlier from database updates so we should be good.
> > That means they did not mention to block previous 0.103 releases so
> > there is probably no need to add stronger wording as I suggested.
> > The NEWS file mentions a CVE which looks harmless in typical mail
> > server setup since it requires an additional option for scanning.
> > 
> > I have it in unstable since the 12th and deployed the Buster
> > version
> > on a server and had the regular testing for Bullseye.
> 
> Sorry, things have been a little hectic recently.
> 
> Updating to .5 seems to make sense for everyone; thanks.
> 

For the record, .5 was released via {buster,bullseye}-updates last
night; see SUA211-1 / 
https://lists.debian.org/debian-stable-announce/2022/01/msg00001.html

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
  - From: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>

References:
- Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
  - From: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
- Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
  - From: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
- Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Bug#1002681: transition: ocaml
Next by Date: Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
Previous by thread: Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
Next by thread: Bug#1002298: bullseye-pu: package clamav/0.103.4+dfsg-0+deb11u1
Index(es):
- Date
- Thread