control: retitle -1 unblock: debian-security-support/1:12+2023.03.17
control: tags -1 -moreinfo
thanks
On Fri, Mar 17, 2023 at 09:49:46AM +0100, Moritz Mühlenhoff wrote:
> > openjdk-17 See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#openjdk-17
> Ack. I also filed #1033069 to update the release notes.
cool, thanks.
> > Are there any further updates expected from the security team's POV?
> I pushed a change to add a note on the legacy Spring classes we only use to
> build some packages, but with by itself are not supported to run anything.
cool, thanks.
> With that I think everything is covered for Bookworm I think.
great, I've just uploaded debian-security-support/1:12+2023.03.17, the
updated full debdiff to the version in bookworm is attached.
$ debdiff debian-security-support_12+2022.08.22.dsc debian-security-support_12+2023.03.17.dsc|diffstat
debian/changelog | 36 +++++++++++++++++
debian/control | 2
debian/debian-security-support.lintian-overrides | 6 ++
debian/po/ro.po | 100 +++++++++++++++++++++++++++++++++++++++++++++++++
po/ro.po | 142 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
security-support-limited | 8 +--
6 files changed, 288 insertions(+), 6 deletions(-)
debian-security-support (1:12+2023.03.17) unstable; urgency=medium
[ Moritz Muehlenhoff ]
* security-support-limited: add note about libspring-java.
[ Holger Levsen ]
* security-support-limited: Add openjdk-21 and drop openjdk-17 as the latter
is the default (and supported) JDK in bookworm.
* Add lintian override for possibly-insecure-handling-of-tmp-files-in-
maintainer-script after reviewing the postinst script.
* Add lintian override for unused debconf templates because the templates are
used, just not by debconf.
-- Holger Levsen <holger@debian.org> Fri, 17 Mar 2023 12:27:15 +0100
debian-security-support (1:12+2023.03.05) unstable; urgency=medium
* security-support-limited:
- for golang and openjdk-17, point to the bookworm manual instead the one
for bullseye.
- add mozjs102 based on package description (and #959804).
- drop mozjs52 and mozjs60 as they were only present in buster.
-- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:39:38 +0100
debian-security-support (1:12+2022.08.23) unstable; urgency=medium
* Add Romanian translation for debian-security-support debconf templates,
thanks to Remus-Gabriel Chelu. Closes: #1031615.
* Add Romanian translation for check-support-status, thanks to
Remus-Gabriel Chelu. Closes: #1031617.
* Fix mismatched lintian override, thanks lintian-brush.
* Bump standards version to 4.6.2, no changes needed.
-- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:06:04 +0100
--
cheers,
Holger
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org
⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
⠈⠳⣄
The system isn't broken. It was built this way.
diff -Nru debian-security-support-12+2022.08.22/debian/changelog debian-security-support-12+2023.03.17/debian/changelog
--- debian-security-support-12+2022.08.22/debian/changelog 2022-08-22 14:59:42.000000000 +0200
+++ debian-security-support-12+2023.03.17/debian/changelog 2023-03-17 12:27:15.000000000 +0100
@@ -1,3 +1,39 @@
+debian-security-support (1:12+2023.03.17) unstable; urgency=medium
+
+ [ Moritz Muehlenhoff ]
+ * security-support-limited: add note about libspring-java.
+
+ [ Holger Levsen ]
+ * security-support-limited: Add openjdk-21 and drop openjdk-17 as the latter
+ is the default (and supported) JDK in bookworm.
+ * Add lintian override for possibly-insecure-handling-of-tmp-files-in-
+ maintainer-script after reviewing the postinst script.
+ * Add lintian override for unused debconf templates because the templates are
+ used, just not by debconf.
+
+ -- Holger Levsen <holger@debian.org> Fri, 17 Mar 2023 12:27:15 +0100
+
+debian-security-support (1:12+2023.03.05) unstable; urgency=medium
+
+ * security-support-limited:
+ - for golang and openjdk-17, point to the bookworm manual instead the one
+ for bullseye.
+ - add mozjs102 based on package description (and #959804).
+ - drop mozjs52 and mozjs60 as they were only present in buster.
+
+ -- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:39:38 +0100
+
+debian-security-support (1:12+2022.08.23) unstable; urgency=medium
+
+ * Add Romanian translation for debian-security-support debconf templates,
+ thanks to Remus-Gabriel Chelu. Closes: #1031615.
+ * Add Romanian translation for check-support-status, thanks to
+ Remus-Gabriel Chelu. Closes: #1031617.
+ * Fix mismatched lintian override, thanks lintian-brush.
+ * Bump standards version to 4.6.2, no changes needed.
+
+ -- Holger Levsen <holger@debian.org> Sun, 05 Mar 2023 20:06:04 +0100
+
debian-security-support (1:12+2022.08.22) unstable; urgency=medium
* Revert "include /var/lib/debian-security-support in package.", thus
diff -Nru debian-security-support-12+2022.08.22/debian/control debian-security-support-12+2023.03.17/debian/control
--- debian-security-support-12+2022.08.22/debian/control 2022-08-22 13:17:16.000000000 +0200
+++ debian-security-support-12+2023.03.17/debian/control 2023-03-05 20:33:23.000000000 +0100
@@ -16,7 +16,7 @@
original-awk,
po-debconf,
xmlto,
-Standards-Version: 4.6.1
+Standards-Version: 4.6.2
Rules-Requires-Root: no
Vcs-Git: https://salsa.debian.org/debian/debian-security-support.git
Vcs-Browser: https://salsa.debian.org/debian/debian-security-support
diff -Nru debian-security-support-12+2022.08.22/debian/debian-security-support.lintian-overrides debian-security-support-12+2023.03.17/debian/debian-security-support.lintian-overrides
--- debian-security-support-12+2022.08.22/debian/debian-security-support.lintian-overrides 2022-08-22 12:33:16.000000000 +0200
+++ debian-security-support-12+2023.03.17/debian/debian-security-support.lintian-overrides 2023-03-15 19:04:23.000000000 +0100
@@ -1,3 +1,7 @@
debian-security-support: no-debconf-config
debian-security-support: postinst-uses-db-input
-debian-security-support: debconf-is-not-a-registry usr/share/debian-security-support/check-support-status.hook
+debian-security-support: debconf-is-not-a-registry [usr/share/debian-security-support/check-support-status.hook:*]
+debian-security-support: possibly-insecure-handling-of-tmp-files-in-maintainer-script /tmp [postinst:43]
+debian-security-support: unused-debconf-template debian-security-support/ended [templates:2]
+debian-security-support: unused-debconf-template debian-security-support/limited [templates:108]
+debian-security-support: unused-debconf-template debian-security-support/earlyend [templates:214]
diff -Nru debian-security-support-12+2022.08.22/debian/po/ro.po debian-security-support-12+2023.03.17/debian/po/ro.po
--- debian-security-support-12+2022.08.22/debian/po/ro.po 1970-01-01 01:00:00.000000000 +0100
+++ debian-security-support-12+2023.03.17/debian/po/ro.po 2023-03-05 20:33:23.000000000 +0100
@@ -0,0 +1,100 @@
+# Mesajele în limba română pentru pachetul debian-security-support.
+# Romanian translation of debian-security-support.
+# Copyright © 2023 THE PACKAGE'S COPYRIGHT HOLDER
+# This file is distributed under the same license as the debian-security-support package.
+#
+# Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>, 2023.
+#
+# Cronologia traducerii fișierului „debian-security-support”:
+# Traducerea inițială, făcută de R-GC, pentru versiunea debian-security-support 1 12+2022.08.22 (2016-05-12).
+# Actualizare a traducerii pentru versiunea Y, făcută de X, Y(anul).
+#
+#
+# Note to translators:
+# Some more messages that require translation are in the po/
+# directory. Additionally, there's also a manpage at
+# "man/check-support-status.txt", in the docbook format. If you
+# provide a translated version, use the file name
+# "man/check-support-status.txt.$LANG", and it will be added to the
+# package.
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: debian-security-support 1 12+2022.08.22\n"
+"Report-Msgid-Bugs-To: debian-security-support@packages.debian.org\n"
+"POT-Creation-Date: 2016-05-12 09:42+0200\n"
+"PO-Revision-Date: 2023-02-14 21:00+0100\n"
+"Last-Translator: Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>\n"
+"Language-Team: Romanian <debian-l10n-romanian@lists.debian.org>\n"
+"Language: ro\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n==0 || (n!=1 && n%100>=1 && "
+"n%100<=19) ? 1 : 2);\n"
+"X-Bugs: Report translation errors to the Language-Team address.\n"
+"X-Generator: Poedit 3.2.2\n"
+
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:2001
+msgid "Ended security support for one or more packages"
+msgstr ""
+"Perioada suportului de securitate s-a încheiat pentru unul sau mai multe pachete"
+
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:2001
+msgid ""
+"Unfortunately, it has been necessary to end security support for some packages "
+"before the end of the regular security maintenance life cycle."
+msgstr ""
+"Din păcate, a fost necesar să se încheie suportul de securitate pentru unele "
+"pachete înainte de încheierea ciclului de viață obișnuit de întreținere a "
+"securității."
+
+#. Type: text
+#. Description
+#. Type: text
+#. Description
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:2001
+#: ../debian-security-support.templates:3001
+#: ../debian-security-support.templates:4001
+msgid "The following packages found on this system are affected by this:"
+msgstr "Următoarele pachete găsite în acest sistem sunt afectate de aceasta:"
+
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:3001
+msgid "Limited security support for one or more packages"
+msgstr "Suport de securitate limitat pentru unul sau mai multe pachete"
+
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:3001
+msgid ""
+"Unfortunately, it has been necessary to limit security support for some "
+"packages."
+msgstr ""
+"Din păcate, a fost necesar să se limiteze suportul de securitate pentru unele "
+"pachete."
+
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:4001
+msgid "Future end of support for one or more packages"
+msgstr ""
+"Se va încheia în curând suportul de securitate pentru unul sau mai multe pachete"
+
+#. Type: text
+#. Description
+#: ../debian-security-support.templates:4001
+msgid ""
+"Unfortunately, it will be necessary to end security support for some packages "
+"before the end of the regular security maintenance life cycle."
+msgstr ""
+"Din păcate, va fi necesar să se încheie suportul de securitate pentru unele "
+"pachete înainte de sfârșitul ciclului de viață obișnuit de întreținere a "
+"securității."
diff -Nru debian-security-support-12+2022.08.22/po/ro.po debian-security-support-12+2023.03.17/po/ro.po
--- debian-security-support-12+2022.08.22/po/ro.po 1970-01-01 01:00:00.000000000 +0100
+++ debian-security-support-12+2023.03.17/po/ro.po 2023-03-05 20:33:23.000000000 +0100
@@ -0,0 +1,142 @@
+# Mesajele în limba română pentru pachetul debian-security-support.
+# Romanian translation of debian-security-support.
+# Copyright © 2023 Christoph Biedl
+# This file is distributed under the same license as the debian-security-support package.
+#
+# Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>, 2023.
+#
+# Cronologia traducerii fișierului „debian-security-support”:
+# Traducerea inițială, făcută de R-GC, pentru versiunea debian-security-support 1 12+2022.08.22 (2016-06-07).
+# Actualizare a traducerii pentru versiunea Y, făcută de X, Y(anul).
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: debian-security-support 1 12+2022.08.22\n"
+"Report-Msgid-Bugs-To: debian-security-support@packages.debian.org\n"
+"POT-Creation-Date: 2016-06-07 12:13+0200\n"
+"PO-Revision-Date: 2023-02-15 14:05+0100\n"
+"Last-Translator: Remus-Gabriel Chelu <remusgabriel.chelu@disroot.org>\n"
+"Language-Team: Romanian <debian-l10n-romanian@lists.debian.org>\n"
+"Language: ro\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n==0 || (n!=1 && n%100>=1 && "
+"n%100<=19) ? 1 : 2);\n"
+"X-Bugs: Report translation errors to the Language-Team address.\n"
+"X-Generator: Poedit 3.2.2\n"
+
+# R-GC, scrie:
+# am tradus astfel, acest mesaj, pentru că:
+# *
+# „Variabila de mediu DEBIAN_VERSION, are valoarea necunoscută 100.5. Valorile valide sunt între 10.5 și 15.5”
+# este cea ce va citi utilizatorul (valoarea dată
+# variabilelor, este una ipotetică; dar, pluzibilă)
+#: ../check-support-status.in:24
+#, sh-format
+msgid ""
+"Unknown DEBIAN_VERSION $DEBIAN_VERSION. Valid values from $DEB_LOWEST_VER_ID "
+"and $DEB_NEXT_VER_ID"
+msgstr ""
+"Variabila de mediu DEBIAN_VERSION, are valoarea necunoscută $DEBIAN_VERSION. "
+"Valorile valide sunt între $DEB_LOWEST_VER_ID și $DEB_NEXT_VER_ID"
+
+#: ../check-support-status.in:63
+msgid "Failed to parse the command line parameters"
+msgstr "Nu s-au putut analiza parametrii liniei de comandă"
+
+#: ../check-support-status.in:72
+#, sh-format
+msgid "$name version $VERSION"
+msgstr "$name versiune $VERSION"
+
+#: ../check-support-status.in:101
+msgid "E: Internal error"
+msgstr "E: Eroare internă"
+
+#: ../check-support-status.in:117
+msgid "E: Need a --type if --list is given"
+msgstr "E: Aveți nevoie de opțiunea „--type” dacă este dată opțiunea „--list”"
+
+#: ../check-support-status.in:130
+#, sh-format
+msgid "E: Unknown --type '$TYPE'"
+msgstr "E: Argument necunoscut al opțiunii „--type”, «$TYPE»"
+
+#: ../check-support-status.in:282
+msgid "Future end of support for one or more packages"
+msgstr ""
+"Suportul de securitate se va încheia în curând pentru unul sau mai multe pachete"
+
+#: ../check-support-status.in:285
+msgid ""
+"Unfortunately, it will be necessary to end security support for some packages "
+"before the end of the regular security maintenance life cycle."
+msgstr ""
+"Din păcate, va fi necesar să se încheie suportul de securitate pentru unele "
+"pachete înainte de sfârșitul ciclului de viață obișnuit de întreținere a "
+"securității."
+
+#: ../check-support-status.in:288 ../check-support-status.in:298
+#: ../check-support-status.in:308
+msgid "The following packages found on this system are affected by this:"
+msgstr "Următoarele pachete găsite în acest sistem sunt afectate de acest lucru:"
+
+#: ../check-support-status.in:292
+msgid "Ended security support for one or more packages"
+msgstr "S-a încheiat suportul de securitate pentru unul sau mai multe pachete"
+
+#: ../check-support-status.in:295
+msgid ""
+"Unfortunately, it has been necessary to end security support for some packages "
+"before the end of the regular security maintenance life cycle."
+msgstr ""
+"Din păcate, a fost necesar să se încheie suportul de securitate pentru unele "
+"pachete înainte de sfârșitul ciclului de viață obișnuit de întreținere a "
+"securității."
+
+#: ../check-support-status.in:302
+msgid "Limited security support for one or more packages"
+msgstr "Suport de securitate limitat pentru unul sau mai multe pachete"
+
+#: ../check-support-status.in:305
+msgid ""
+"Unfortunately, it has been necessary to limit security support for some "
+"packages."
+msgstr ""
+"Din păcate, a fost necesar să se limiteze suportul de securitate pentru unele "
+"pachete."
+
+#: ../check-support-status.in:320
+#, sh-format
+msgid "* Source:$SRC_NAME, will end on $ALERT_WHEN"
+msgstr "* Sursa:$SRC_NAME, se va încheia pe $ALERT_WHEN"
+
+#: ../check-support-status.in:323
+#, sh-format
+msgid "* Source:$SRC_NAME, ended on $ALERT_WHEN at version $ALERT_VERSION"
+msgstr ""
+"* Sursa:$SRC_NAME, s-a încheiat pe $ALERT_WHEN la versiunea $ALERT_VERSION"
+
+#: ../check-support-status.in:326
+#, sh-format
+msgid "* Source:$SRC_NAME"
+msgstr "* Sursa:$SRC_NAME"
+
+#: ../check-support-status.in:330
+#, sh-format
+msgid " Details: $ALERT_WHY"
+msgstr " Detalii: $ALERT_WHY"
+
+#: ../check-support-status.in:333
+msgid " Affected binary package:"
+msgstr " Pachetul binar afectat:"
+
+#: ../check-support-status.in:335
+msgid " Affected binary packages:"
+msgstr " Pachete binare afectate:"
+
+#: ../check-support-status.in:338
+#, sh-format
+msgid " - $BIN_NAME (installed version: $BIN_VERSION)"
+msgstr " - $BIN_NAME (versiunea instalată: $BIN_VERSION)"
diff -Nru debian-security-support-12+2022.08.22/security-support-limited debian-security-support-12+2023.03.17/security-support-limited
--- debian-security-support-12+2022.08.22/security-support-limited 2022-08-22 13:17:16.000000000 +0200
+++ debian-security-support-12+2023.03.17/security-support-limited 2023-03-17 10:51:14.000000000 +0100
@@ -11,14 +11,14 @@
cython Only included for building packages, not running them, #975058
ganglia See README.Debian.security, only supported behind an authenticated HTTP zone, #702775
ganglia-web See README.Debian.security, only supported behind an authenticated HTTP zone, #702776
-golang.* See https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information.en.html#golang-static-linking
+golang.* See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#golang-static-linking
kde4libs khtml has no security support upstream, only for use on trusted content
khtml khtml has no security support upstream, only for use on trusted content, see #1004293
-mozjs52 Not covered by security support, only suitable for trusted content
-mozjs60 Not covered by security support, only suitable for trusted content
+libspring-java See README.Debian.security included in the package
+mozjs102 Not covered by security support, only suitable for trusted content, see package description
mozjs78 Not covered by security support, only suitable for trusted content, see #959804
ocsinventory-server Only supported behind an authenticated HTTP zone
-openjdk-17 See https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information.en.html#openjdk-17
+openjdk-21 See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#openjdk-21
python2.7 Only included for building packages, not running them, #975058
python-stdlib-extensions Only included for building packages, not running them, #975058
qtwebengine-opensource-src No security support upstream and backports not feasible, only for use on trusted content
Attachment:
signature.asc
Description: PGP signature