[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1113750: trixie-pu: package stardict/3.0.7+git20220909+dfsg-8+deb13u1(CVE-2025-55014)

On Tue, 2025-09-02 at 13:07 +0800, xiao sheng wen(肖盛文) wrote:
> I just upload it, this package has been put into the NEW queue again.
> 
> https://ftp-master.debian.org/new/stardict_3.0.7+git20220909+dfsg-8+deb13u1.html
> 
> The version 3.0.7+git20220909+dfsg-8 already passed the NEW queue in
> sid before.

Yes, you added new binary packages - they're not in stable at the
moment. Whether they exist in unstable is irrelevant as far as the
archive is concerned. That's not something you should just do in a
stable update without getting agreement first.

In any case, your versioning is wrong:

stardict   | 3.0.7+git20220909+dfsg-8         | unstable       | source, all
stardict   | 3.0.7+git20220909+dfsg-8+deb13u1 | new            | source, all

Assuming that we decide we're OK with the update, it will need a
version number that's lower than unstable. 3.0.7+git20220909+dfsg-
8~deb13u1 would be the conventional approach.

Regards,

Adam
Reply to: