Bug#1061983: marked as done (bullseye-pu: package debian-security-support/1:11+2024.01.30)

["Debian Bug Tracking System" <owner@bugs.debian.org>]

Your message dated Sat, 10 Feb 2024 13:02:59 +0000
with message-id <E1rYn0V-002xth-59@coccia.debian.org>
and subject line Released with 11.9
has caused the Debian Bug report #1061983,
regarding bullseye-pu: package debian-security-support/1:11+2024.01.30
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
1061983: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061983
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: bullseye-pu: package debian-security-support/1:11+2024.01.30
• From: Holger Levsen <holger@debian.org>
• Date: Tue, 30 Jan 2024 18:12:57 +0100
• Message-id: <ZbkuGTNlnVEAg3iy@layer-acht.org>

Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian.org@packages.debian.org
Usertags: pu
X-Debbugs-Cc: debian-security-support@packages.debian.org
Control: affects -1 + src:debian-security-support

[ Reason ]
  * Add chromium to security-support-ended.deb11, thanks to Andres Salomon.
    Closes: #1061268
  * Add tiles and libspring-java to security-support-limited. Closes: #1057343

[ Impact ]
Users might not learn that security support for some packages has ended.

[ Risks ]
trivial change, data-only update

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable



The diff is against the version already approved for+in bullseye-p-u:

 debian/.gitlab-ci.yml        |   13 -------------
 debian/changelog             |    9 +++++++++
 security-support-ended.deb11 |    4 +++-
 security-support-limited     |    2 ++
 4 files changed, 14 insertions(+), 14 deletions(-)

The .gitlab-ci.yml is desired and harmless.

The full diff is attached.


-- 
cheers,
	Holger

 ⢀⣴⠾⠻⢶⣦⠀
 ⣾⠁⢠⠒⠀⣿⡁  holger@(debian|reproducible-builds|layer-acht).org
 ⢿⡄⠘⠷⠚⠋⠀  OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
 ⠈⠳⣄

Es war mir eine Lehre, dich kennenzulernen.

diff -Nru debian-security-support-11+2023.12.11/debian/changelog debian-security-support-11+2024.01.30/debian/changelog
--- debian-security-support-11+2023.12.11/debian/changelog	2023-12-22 16:48:41.000000000 +0100
+++ debian-security-support-11+2024.01.30/debian/changelog	2024-01-30 17:55:19.000000000 +0100
@@ -1,3 +1,12 @@
+debian-security-support (1:11+2024.01.30) bullseye; urgency=medium
+
+  * Add chromium to security-support-ended.deb11, thanks to Andres Salomon.
+    Closes: #1061268
+  * Add tiles and libspring-java to security-support-limited. Closes: #1057343
+  * Drop debian/.gitlab-ci.yml.
+
+ -- Holger Levsen <holger@debian.org>  Tue, 30 Jan 2024 17:55:19 +0100
+
 debian-security-support (1:11+2023.12.11) bullseye; urgency=medium
 
   [ Santiago Ruano Rincón ]
diff -Nru debian-security-support-11+2023.12.11/debian/.gitlab-ci.yml debian-security-support-11+2024.01.30/debian/.gitlab-ci.yml
--- debian-security-support-11+2023.12.11/debian/.gitlab-ci.yml	2023-12-22 16:46:13.000000000 +0100
+++ debian-security-support-11+2024.01.30/debian/.gitlab-ci.yml	1970-01-01 01:00:00.000000000 +0100
@@ -1,13 +0,0 @@
-image: debian:unstable
-
-build: 
-  stage: build
-  
-  before_script:
-    - apt-get update && apt-get -y install devscripts git-buildpackage
-    - mk-build-deps --tool "apt -y -o Debug::pkgProblemResolver=yes --no-install-recommends" --install -r debian/control
-
-  script:
-    - git checkout master
-    - git pull
-    - gbp buildpackage -uc -us
diff -Nru debian-security-support-11+2023.12.11/security-support-ended.deb11 debian-security-support-11+2024.01.30/security-support-ended.deb11
--- debian-security-support-11+2023.12.11/security-support-ended.deb11	2023-12-22 16:47:38.000000000 +0100
+++ debian-security-support-11+2024.01.30/security-support-ended.deb11	2024-01-30 17:51:03.000000000 +0100
@@ -10,6 +10,8 @@
 # 4. Descriptive text or URL with more details (optional)
 #    In the program's output, this is prefixed with "Details:"
 
-tor                      0.4.5.16-1                  2023-11-22  https://lists.debian.org/debian-security-announce/2023/msg00258.html
+chromium                 120.0.6099.224-1~deb11u1    2024-01-23  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061268
 consul                   1.8.7+dfsg1-2               2023-12-04  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1057418
 xen                      4.14.5+94-ge49571868d-1     2023-09-30  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053246
+tor                      0.4.5.16-1                  2023-11-22  https://lists.debian.org/debian-security-announce/2023/msg00258.html
+
diff -Nru debian-security-support-11+2023.12.11/security-support-limited debian-security-support-11+2024.01.30/security-support-limited
--- debian-security-support-11+2023.12.11/security-support-limited	2023-12-22 16:47:38.000000000 +0100
+++ debian-security-support-11+2024.01.30/security-support-limited	2024-01-30 17:55:19.000000000 +0100
@@ -15,6 +15,7 @@
 gnupg1          See #982258 and https://www.debian.org/releases/stretch/amd64/release-notes/ch-whats-new.en.html#modern-gnupg
 kde4libs        khtml has no security support upstream, only for use on trusted content
 khtml           khtml has no security support upstream, only for use on trusted content, see #1004293
+libspring-java  should be only used for building other Debian packages or in a secured local environment with trusted devices.
 mozjs68         Not covered by security support, only suitable for trusted content, see #959804
 mozjs78         Not covered by security support, only suitable for trusted content, see #959804
 ocsinventory-server Only supported behind an authenticated HTTP zone
@@ -26,4 +27,5 @@
 qtwebkit-opensource-src No security support upstream and backports not feasible, only for use on trusted content
 samba           Only non-AD Domain Controller use cases are supported. See https://lists.debian.org/debian-security-announce/2023/msg00169.html
 sql-ledger      Only supported behind an authenticated HTTP zone
+tiles           Only supported for building packages, #1057343
 zoneminder      See README.Debian.security, only supported behind an authenticated HTTP zone, #922724

Attachment: signature.asc
Description: PGP signature

--- End Message ---

--- Begin Message ---

• To: 1061983-done@bugs.debian.org
• Subject: Released with 11.9
• From: Jonathan Wiltshire <jmw@coccia.debian.org>
• Date: Sat, 10 Feb 2024 13:02:59 +0000
• Message-id: <E1rYn0V-002xth-59@coccia.debian.org>

Version: 11.9

The upload requested in this bug has been released as part of 11.9.

--- End Message ---