Re: [SECURITY] [DSA 978-1] New GnuPG packages fix invalid success return

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 978-1] New GnuPG packages fix invalid success return
From: Robert King <robert.king@newcastle.edu.au>
Date: Tue, 21 Feb 2006 15:32:16 -0800
Message-id: <[🔎] 43FBA300.5070105@newcastle.edu.au>

On Fri, 17 Feb 2006 17:40:29 +0000, Brian Brazil wrote:

> This won't upgrade automatically as the version in Sarge/AMD64 is
> higher, specifically "1.4.1-1.0.1". According to pdo.d.n, all other
> archs have "1.4.1-1".
>
> By my reading of Debian Policy[1], the comparison of "1.0.1" and
> "1sarge1" compares the 1s numerically (equal) and then compares the '.'
> to the 's', which results in the '.' having a lower version.
>
> I don't know enough about security version numbering practice to suggest
> a fix.

> Brian

>[1]http://www.debian.org/doc/debian-policy/ch-controlfields.html#s-f-Version


From the gnupg changelog.Debian.gz

gnupg (1.4.1-1.0.1) unstable; urgency=low

  * BinNMU to get the depedencyies on libusb and libreadline, they were
    missing in the last upload.

it sounds like a 1.4.1-1.0.1sarge1 is needed with the dependencies change

Reply to:

Prev by Date: Re: security.debian.org extremely slow
Next by Date: Re: ping problem
Previous by thread: Re: [SECURITY] [DSA 978-1] New GnuPG packages fix invalid success return
Next by thread: in topr five stoooks
Index(es):
- Date
- Thread