Re: Testers needed for Tomcat security update

To: debian-security@lists.debian.org
Cc: tmancill@debian.org
Subject: Re: Testers needed for Tomcat security update
From: Dominic Hargreaves <dom@earth.li>
Date: Mon, 30 Jan 2012 13:55:57 +0000
Message-id: <20120130135556.GO4209@urchin.earth.li>
In-reply-to: <slrnjiae0s.emi.jmm@inutil.org>
References: <slrnjhob7g.cuu.jmm@inutil.org> <slrnjiae0s.emi.jmm@inutil.org>

On Sun, Jan 29, 2012 at 01:14:20PM +0100, Moritz Mühlenhoff wrote:
> Moritz Mühlenhoff <jmm@inutil.org> schrieb:
> > Hi,
> > the changes needed to secure Tomcat against the recent hash collision
> > attack are large and instrusive. That's why we decided to update to
> > 6.0.35 in the upcoming stable update.
> >
> > No breakage is expected, but we need more "beta testers" before we 
> > can release the update. The packages can be fetched from 
> > http://people.debian.org/~tmancill/ (6.0.35-1+squeeze1)
> >
> > Please send negative/positive test feedback to jmm@debian.org
> 
> We've received no feedback so far. In the absence of feedback, there
> won't be a DSA.

I can try and get some testing of this done, but could you (or tmancill?)
provide signed checksums for those packages?

Cheers,
Dominic.

-- 
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Reply to:

Follow-Ups:
- Re: Testers needed for Tomcat security update
  - From: tony mancill <tmancill@debian.org>
- Re: Testers needed for Tomcat security update
  - From: Dominic Hargreaves <dominic.hargreaves@oucs.ox.ac.uk>

References:
- Testers needed for Tomcat security update
  - From: Moritz Mühlenhoff <jmm@inutil.org>
- Re: Testers needed for Tomcat security update
  - From: Moritz Mühlenhoff <jmm@inutil.org>

Prev by Date: Re: Linux 3.2 in wheezy
Next by Date: Re: Testers needed for Tomcat security update
Previous by thread: Re: Testers needed for Tomcat security update
Next by thread: Re: Testers needed for Tomcat security update
Index(es):
- Date
- Thread