[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1099091: Bug#1098272: openssh-server: Security update 1:9.2p1-2+deb12u5 depends on libssl3 (>= 3.0.15), but that is not in debian security



On Tue, Mar 04, 2025 at 02:26:50PM +0000, Markus Rexhepi-Lindberg wrote:
I'm also seeing this issue on multiple bookworm machines. This is my
`Unattended-Upgrade::Origins-Pattern` config.

   Unattended-Upgrade::Origins-Pattern {
       "origin=Debian,codename=${distro_codename}-security,label=Debian-Security";
   };

That is, only including the security origin.

Can you explain where you got this configuration from, in case there's some documentation that we need to correct? My opinion is that this is a misconfiguration, and that if "origin=Debian,codename=${distro_codename}-security,label=Debian-Security" is present then "origin=Debian,codename=${distro_codename},label=Debian" must also be present; because otherwise you're bound to run into problems like this one at some point due to how the autobuilders are configured for security updates.

--
Colin Watson (he/him)                              [cjwatson@debian.org]


Reply to: