control: retitle -1 unblock: debian-security-support/1:12+2023.03.17 control: tags -1 -moreinfo thanks On Fri, Mar 17, 2023 at 09:49:46AM +0100, Moritz Mühlenhoff wrote: > > openjdk-17 See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#openjdk-17 > Ack. I also filed #1033069 to update the release notes. cool, thanks. > > Are there any further updates expected from the security team's POV? > I pushed a change to add a note on the legacy Spring classes we only use to > build some packages, but with by itself are not supported to run anything. cool, thanks. > With that I think everything is covered for Bookworm I think. great, I've just uploaded debian-security-support/1:12+2023.03.17, the updated full debdiff to the version in bookworm is attached. $ debdiff debian-security-support_12+2022.08.22.dsc debian-security-support_12+2023.03.17.dsc|diffstat debian/changelog | 36 +++++++++++++++++ debian/control | 2 debian/debian-security-support.lintian-overrides | 6 ++ debian/po/ro.po | 100 +++++++++++++++++++++++++++++++++++++++++++++++++ po/ro.po | 142 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ security-support-limited | 8 +-- 6 files changed, 288 insertions(+), 6 deletions(-) debian-security-support (1:12+2023.03.17) unstable; urgency=medium [ Moritz Muehlenhoff ] * security-support-limited: add note about libspring-java. [ Holger Levsen ] * security-support-limited: Add openjdk-21 and drop openjdk-17 as the latter is the default (and supported) JDK in bookworm. * Add lintian override for possibly-insecure-handling-of-tmp-files-in- maintainer-script after reviewing the postinst script. * Add lintian override for unused debconf templates because the templates are used, just not by debconf. -- Holger Levsen <holger@debian.org> Fri, 17 Mar 2023 12:27:15 +0100 debian-security-support (1:12+2023.03.05) unstable; urgency=medium * security-support-limited: - for golang and openjdk-17, point to the bookworm manual instead the one for bullseye. - add mozjs102 based on package description (and #959804). - drop mozjs52 and mozjs60 as they were only present in buster. -- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:39:38 +0100 debian-security-support (1:12+2022.08.23) unstable; urgency=medium * Add Romanian translation for debian-security-support debconf templates, thanks to Remus-Gabriel Chelu. Closes: #1031615. * Add Romanian translation for check-support-status, thanks to Remus-Gabriel Chelu. Closes: #1031617. * Fix mismatched lintian override, thanks lintian-brush. * Bump standards version to 4.6.2, no changes needed. -- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:06:04 +0100 -- cheers, Holger ⢀⣴⠾⠻⢶⣦⠀ ⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org ⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C ⠈⠳⣄ The system isn't broken. It was built this way.
diff -Nru debian-security-support-12+2022.08.22/debian/changelog debian-security-support-12+2023.03.17/debian/changelog --- debian-security-support-12+2022.08.22/debian/changelog 2022-08-22 14:59:42.000000000 +0200 +++ debian-security-support-12+2023.03.17/debian/changelog 2023-03-17 12:27:15.000000000 +0100 @@ -1,3 +1,39 @@ +debian-security-support (1:12+2023.03.17) unstable; urgency=medium + + [ Moritz Muehlenhoff ] + * security-support-limited: add note about libspring-java. + + [ Holger Levsen ] + * security-support-limited: Add openjdk-21 and drop openjdk-17 as the latter + is the default (and supported) JDK in bookworm. + * Add lintian override for possibly-insecure-handling-of-tmp-files-in- + maintainer-script after reviewing the postinst script. + * Add lintian override for unused debconf templates because the templates are + used, just not by debconf. + + -- Holger Levsen <holger@debian.org> Fri, 17 Mar 2023 12:27:15 +0100 + +debian-security-support (1:12+2023.03.05) unstable; urgency=medium + + * security-support-limited: + - for golang and openjdk-17, point to the bookworm manual instead the one + for bullseye. + - add mozjs102 based on package description (and #959804). + - drop mozjs52 and mozjs60 as they were only present in buster. + + -- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:39:38 +0100 + +debian-security-support (1:12+2022.08.23) unstable; urgency=medium + + * Add Romanian translation for debian-security-support debconf templates, + thanks to Remus-Gabriel Chelu. Closes: #1031615. + * Add Romanian translation for check-support-status, thanks to + Remus-Gabriel Chelu. Closes: #1031617. + * Fix mismatched lintian override, thanks lintian-brush. + * Bump standards version to 4.6.2, no changes needed. + + -- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:06:04 +0100 + debian-security-support (1:12+2022.08.22) unstable; urgency=medium * Revert "include /var/lib/debian-security-support in package.", thus diff -Nru debian-security-support-12+2022.08.22/debian/control debian-security-support-12+2023.03.17/debian/control --- debian-security-support-12+2022.08.22/debian/control 2022-08-22 13:17:16.000000000 +0200 +++ debian-security-support-12+2023.03.17/debian/control 2023-03-05 20:33:23.000000000 +0100 @@ -16,7 +16,7 @@ original-awk, po-debconf, xmlto, -Standards-Version: 4.6.1 +Standards-Version: 4.6.2 Rules-Requires-Root: no Vcs-Git: https://salsa.debian.org/debian/debian-security-support.git Vcs-Browser: https://salsa.debian.org/debian/debian-security-support diff -Nru debian-security-support-12+2022.08.22/debian/debian-security-support.lintian-overrides debian-security-support-12+2023.03.17/debian/debian-security-support.lintian-overrides --- debian-security-support-12+2022.08.22/debian/debian-security-support.lintian-overrides 2022-08-22 12:33:16.000000000 +0200 +++ debian-security-support-12+2023.03.17/debian/debian-security-support.lintian-overrides 2023-03-15 19:04:23.000000000 +0100 @@ -1,3 +1,7 @@ debian-security-support: no-debconf-config debian-security-support: postinst-uses-db-input -debian-security-support: debconf-is-not-a-registry usr/share/debian-security-support/check-support-status.hook +debian-security-support: debconf-is-not-a-registry [usr/share/debian-security-support/check-support-status.hook:*] +debian-security-support: possibly-insecure-handling-of-tmp-files-in-maintainer-script /tmp [postinst:43] +debian-security-support: unused-debconf-template debian-security-support/ended [templates:2] +debian-security-support: unused-debconf-template debian-security-support/limited [templates:108] +debian-security-support: unused-debconf-template debian-security-support/earlyend [templates:214] diff -Nru debian-security-support-12+2022.08.22/debian/po/ro.po debian-security-support-12+2023.03.17/debian/po/ro.po --- debian-security-support-12+2022.08.22/debian/po/ro.po 1970-01-01 01:00:00.000000000 +0100 +++ debian-security-support-12+2023.03.17/debian/po/ro.po 2023-03-05 20:33:23.000000000 +0100 @@ -0,0 +1,100 @@ +# Mesajele în limba română pentru pachetul debian-security-support. +# Romanian translation of debian-security-support. +# Copyright © 2023 THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the debian-security-support package. +# +# Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>, 2023. +# +# Cronologia traducerii fișierului „debian-security-support”: +# Traducerea inițială, făcută de R-GC, pentru versiunea debian-security-support 1 12+2022.08.22 (2016-05-12). +# Actualizare a traducerii pentru versiunea Y, făcută de X, Y(anul). +# +# +# Note to translators: +# Some more messages that require translation are in the po/ +# directory. Additionally, there's also a manpage at +# "man/check-support-status.txt", in the docbook format. If you +# provide a translated version, use the file name +# "man/check-support-status.txt.$LANG", and it will be added to the +# package. +# +msgid "" +msgstr "" +"Project-Id-Version: debian-security-support 1 12+2022.08.22\n" +"Report-Msgid-Bugs-To: debian-security-support@packages.debian.org\n" +"POT-Creation-Date: 2016-05-12 09:42+0200\n" +"PO-Revision-Date: 2023-02-14 21:00+0100\n" +"Last-Translator: Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>\n" +"Language-Team: Romanian <debian-l10n-romanian@lists.debian.org>\n" +"Language: ro\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n==0 || (n!=1 && n%100>=1 && " +"n%100<=19) ? 1 : 2);\n" +"X-Bugs: Report translation errors to the Language-Team address.\n" +"X-Generator: Poedit 3.2.2\n" + +#. Type: text +#. Description +#: ../debian-security-support.templates:2001 +msgid "Ended security support for one or more packages" +msgstr "" +"Perioada suportului de securitate s-a încheiat pentru unul sau mai multe pachete" + +#. Type: text +#. Description +#: ../debian-security-support.templates:2001 +msgid "" +"Unfortunately, it has been necessary to end security support for some packages " +"before the end of the regular security maintenance life cycle." +msgstr "" +"Din păcate, a fost necesar să se încheie suportul de securitate pentru unele " +"pachete înainte de încheierea ciclului de viață obișnuit de întreținere a " +"securității." + +#. Type: text +#. Description +#. Type: text +#. Description +#. Type: text +#. Description +#: ../debian-security-support.templates:2001 +#: ../debian-security-support.templates:3001 +#: ../debian-security-support.templates:4001 +msgid "The following packages found on this system are affected by this:" +msgstr "Următoarele pachete găsite în acest sistem sunt afectate de aceasta:" + +#. Type: text +#. Description +#: ../debian-security-support.templates:3001 +msgid "Limited security support for one or more packages" +msgstr "Suport de securitate limitat pentru unul sau mai multe pachete" + +#. Type: text +#. Description +#: ../debian-security-support.templates:3001 +msgid "" +"Unfortunately, it has been necessary to limit security support for some " +"packages." +msgstr "" +"Din păcate, a fost necesar să se limiteze suportul de securitate pentru unele " +"pachete." + +#. Type: text +#. Description +#: ../debian-security-support.templates:4001 +msgid "Future end of support for one or more packages" +msgstr "" +"Se va încheia în curând suportul de securitate pentru unul sau mai multe pachete" + +#. Type: text +#. Description +#: ../debian-security-support.templates:4001 +msgid "" +"Unfortunately, it will be necessary to end security support for some packages " +"before the end of the regular security maintenance life cycle." +msgstr "" +"Din păcate, va fi necesar să se încheie suportul de securitate pentru unele " +"pachete înainte de sfârșitul ciclului de viață obișnuit de întreținere a " +"securității." diff -Nru debian-security-support-12+2022.08.22/po/ro.po debian-security-support-12+2023.03.17/po/ro.po --- debian-security-support-12+2022.08.22/po/ro.po 1970-01-01 01:00:00.000000000 +0100 +++ debian-security-support-12+2023.03.17/po/ro.po 2023-03-05 20:33:23.000000000 +0100 @@ -0,0 +1,142 @@ +# Mesajele în limba română pentru pachetul debian-security-support. +# Romanian translation of debian-security-support. +# Copyright © 2023 Christoph Biedl +# This file is distributed under the same license as the debian-security-support package. +# +# Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>, 2023. +# +# Cronologia traducerii fișierului „debian-security-support”: +# Traducerea inițială, făcută de R-GC, pentru versiunea debian-security-support 1 12+2022.08.22 (2016-06-07). +# Actualizare a traducerii pentru versiunea Y, făcută de X, Y(anul). +# +msgid "" +msgstr "" +"Project-Id-Version: debian-security-support 1 12+2022.08.22\n" +"Report-Msgid-Bugs-To: debian-security-support@packages.debian.org\n" +"POT-Creation-Date: 2016-06-07 12:13+0200\n" +"PO-Revision-Date: 2023-02-15 14:05+0100\n" +"Last-Translator: Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>\n" +"Language-Team: Romanian <debian-l10n-romanian@lists.debian.org>\n" +"Language: ro\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n==0 || (n!=1 && n%100>=1 && " +"n%100<=19) ? 1 : 2);\n" +"X-Bugs: Report translation errors to the Language-Team address.\n" +"X-Generator: Poedit 3.2.2\n" + +# R-GC, scrie: +# am tradus astfel, acest mesaj, pentru că: +# * +# „Variabila de mediu DEBIAN_VERSION, are valoarea necunoscută 100.5. Valorile valide sunt între 10.5 și 15.5” +# este cea ce va citi utilizatorul (valoarea dată +# variabilelor, este una ipotetică; dar, pluzibilă) +#: ../check-support-status.in:24 +#, sh-format +msgid "" +"Unknown DEBIAN_VERSION $DEBIAN_VERSION. Valid values from $DEB_LOWEST_VER_ID " +"and $DEB_NEXT_VER_ID" +msgstr "" +"Variabila de mediu DEBIAN_VERSION, are valoarea necunoscută $DEBIAN_VERSION. " +"Valorile valide sunt între $DEB_LOWEST_VER_ID și $DEB_NEXT_VER_ID" + +#: ../check-support-status.in:63 +msgid "Failed to parse the command line parameters" +msgstr "Nu s-au putut analiza parametrii liniei de comandă" + +#: ../check-support-status.in:72 +#, sh-format +msgid "$name version $VERSION" +msgstr "$name versiune $VERSION" + +#: ../check-support-status.in:101 +msgid "E: Internal error" +msgstr "E: Eroare internă" + +#: ../check-support-status.in:117 +msgid "E: Need a --type if --list is given" +msgstr "E: Aveți nevoie de opțiunea „--type” dacă este dată opțiunea „--list”" + +#: ../check-support-status.in:130 +#, sh-format +msgid "E: Unknown --type '$TYPE'" +msgstr "E: Argument necunoscut al opțiunii „--type”, «$TYPE»" + +#: ../check-support-status.in:282 +msgid "Future end of support for one or more packages" +msgstr "" +"Suportul de securitate se va încheia în curând pentru unul sau mai multe pachete" + +#: ../check-support-status.in:285 +msgid "" +"Unfortunately, it will be necessary to end security support for some packages " +"before the end of the regular security maintenance life cycle." +msgstr "" +"Din păcate, va fi necesar să se încheie suportul de securitate pentru unele " +"pachete înainte de sfârșitul ciclului de viață obișnuit de întreținere a " +"securității." + +#: ../check-support-status.in:288 ../check-support-status.in:298 +#: ../check-support-status.in:308 +msgid "The following packages found on this system are affected by this:" +msgstr "Următoarele pachete găsite în acest sistem sunt afectate de acest lucru:" + +#: ../check-support-status.in:292 +msgid "Ended security support for one or more packages" +msgstr "S-a încheiat suportul de securitate pentru unul sau mai multe pachete" + +#: ../check-support-status.in:295 +msgid "" +"Unfortunately, it has been necessary to end security support for some packages " +"before the end of the regular security maintenance life cycle." +msgstr "" +"Din păcate, a fost necesar să se încheie suportul de securitate pentru unele " +"pachete înainte de sfârșitul ciclului de viață obișnuit de întreținere a " +"securității." + +#: ../check-support-status.in:302 +msgid "Limited security support for one or more packages" +msgstr "Suport de securitate limitat pentru unul sau mai multe pachete" + +#: ../check-support-status.in:305 +msgid "" +"Unfortunately, it has been necessary to limit security support for some " +"packages." +msgstr "" +"Din păcate, a fost necesar să se limiteze suportul de securitate pentru unele " +"pachete." + +#: ../check-support-status.in:320 +#, sh-format +msgid "* Source:$SRC_NAME, will end on $ALERT_WHEN" +msgstr "* Sursa:$SRC_NAME, se va încheia pe $ALERT_WHEN" + +#: ../check-support-status.in:323 +#, sh-format +msgid "* Source:$SRC_NAME, ended on $ALERT_WHEN at version $ALERT_VERSION" +msgstr "" +"* Sursa:$SRC_NAME, s-a încheiat pe $ALERT_WHEN la versiunea $ALERT_VERSION" + +#: ../check-support-status.in:326 +#, sh-format +msgid "* Source:$SRC_NAME" +msgstr "* Sursa:$SRC_NAME" + +#: ../check-support-status.in:330 +#, sh-format +msgid " Details: $ALERT_WHY" +msgstr " Detalii: $ALERT_WHY" + +#: ../check-support-status.in:333 +msgid " Affected binary package:" +msgstr " Pachetul binar afectat:" + +#: ../check-support-status.in:335 +msgid " Affected binary packages:" +msgstr " Pachete binare afectate:" + +#: ../check-support-status.in:338 +#, sh-format +msgid " - $BIN_NAME (installed version: $BIN_VERSION)" +msgstr " - $BIN_NAME (versiunea instalată: $BIN_VERSION)" diff -Nru debian-security-support-12+2022.08.22/security-support-limited debian-security-support-12+2023.03.17/security-support-limited --- debian-security-support-12+2022.08.22/security-support-limited 2022-08-22 13:17:16.000000000 +0200 +++ debian-security-support-12+2023.03.17/security-support-limited 2023-03-17 10:51:14.000000000 +0100 @@ -11,14 +11,14 @@ cython Only included for building packages, not running them, #975058 ganglia See README.Debian.security, only supported behind an authenticated HTTP zone, #702775 ganglia-web See README.Debian.security, only supported behind an authenticated HTTP zone, #702776 -golang.* See https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information.en.html#golang-static-linking +golang.* See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#golang-static-linking kde4libs khtml has no security support upstream, only for use on trusted content khtml khtml has no security support upstream, only for use on trusted content, see #1004293 -mozjs52 Not covered by security support, only suitable for trusted content -mozjs60 Not covered by security support, only suitable for trusted content +libspring-java See README.Debian.security included in the package +mozjs102 Not covered by security support, only suitable for trusted content, see package description mozjs78 Not covered by security support, only suitable for trusted content, see #959804 ocsinventory-server Only supported behind an authenticated HTTP zone -openjdk-17 See https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information.en.html#openjdk-17 +openjdk-21 See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#openjdk-21 python2.7 Only included for building packages, not running them, #975058 python-stdlib-extensions Only included for building packages, not running them, #975058 qtwebengine-opensource-src No security support upstream and backports not feasible, only for use on trusted content
Attachment:
signature.asc
Description: PGP signature