icedove: no ESR update?

To: icedove@packages.debian.org
Cc: debian-security@lists.debian.org
Subject: icedove: no ESR update?
From: Hideki Yamane <henrich@debian.or.jp>
Date: Sat, 21 Nov 2015 10:48:47 +0900
Message-id: <[🔎] 20151121104847.c68b28330d8766521c92a216@debian.or.jp>

Hi,

About CVE-2015-4473, CVE-2015-4487, CVE-2015-4488 and CVE-2015-4489.
As same as "DSA-3333-1 iceweasel", icedove should be updated with
newer ESR version in Stretch/Sid.

>> Debian follows the extended support releases (ESR) of Firefox.
>> Support for the 31.x series has ended, so starting with this update
>> we're now following the 38.x releases.


Is there any action for it? or just backport package for stable-security
is not enough?


-- 
Regards,

 Hideki Yamane     henrich @ debian.or.jp/org
 http://wiki.debian.org/HidekiYamane

Reply to:

Follow-Ups:
- Re: icedove: no ESR update?
  - From: "Pavlos K. Ponos" <pavlos.ponos@gmail.com>
- Re: icedove: no ESR update?
  - From: Christoph Goehre <chris@sigxcpu.org>
- Re: icedove: no ESR update?
  - From: pioruns <pioruns@o2.pl>

Prev by Date: Re: Thunderbird/Icedove security fixes since ESR 31.8.0
Next by Date: Re: icedove: no ESR update?
Previous by thread: Re: Bug#803204: libiksemel: utterly insecure GNUTLS settings
Next by thread: Re: icedove: no ESR update?
Index(es):
- Date
- Thread