Your message dated Thu, 31 Aug 2023 08:23:12 +0000
with message-id <[email protected]>
and subject line Bug#1050880: fixed in borgbackup 1.2.5-4
has caused the Debian Bug report #1050880,
regarding borgbackup: Mention required documentation for upgrading repositories
for fixes for CVE-2023-36811
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1050880: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050880
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: borgbackup
Version: 1.2.5-1
Severity: normal
X-Debbugs-Cc: [email protected], [email protected]
Control: clone -1 -2
Control: reassign -2 release-notes
Hi
borgbackup/1.2.5-1 contained a fix for CVE-2023-36811. But
additionally to the package upgrades, users need to follow the upgrade
procedure as documented.
After an update of the package one is not really aware of it, so I
suggest a NEWS.Debian entry at least referring to the needed
documentation.
Would it be a good idea to document this as well in the release notes
for trixie, for users updating from bookworm to trixie? (Cloning this
bugreport accordingly to the release-notes).
Regards,
Salvatore
-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 6.4.0-3-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
--- End Message ---
--- Begin Message ---
Source: borgbackup
Source-Version: 1.2.5-4
Done: Gianfranco Costamagna <[email protected]>
We believe that the bug you reported is fixed in the latest version of
borgbackup, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Gianfranco Costamagna <[email protected]> (supplier of updated
borgbackup package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 31 Aug 2023 09:16:19 +0200
Source: borgbackup
Built-For-Profiles: noudeb
Architecture: source
Version: 1.2.5-4
Distribution: unstable
Urgency: medium
Maintainer: Debian Borg Collective <[email protected]>
Changed-By: Gianfranco Costamagna <[email protected]>
Closes: 1021840 1050880
Changes:
borgbackup (1.2.5-4) unstable; urgency=medium
.
* Revert "Add fuse3 dependency"
* Reupload with also paperkey.html file to fix testsuite
* Drop old NEWS file
* Mention in NEWS.Debian compact (Closes: #1021840)
* Mention in NEWS.Debian CVE-2023-36811 (Closes: #1050880)
Checksums-Sha1:
206a821d80ab4e0e925a02a88ec38e8ab28c5c74 2783 borgbackup_1.2.5-4.dsc
93184294714f53a3b21087dd63bf19cdc362031d 20888 borgbackup_1.2.5-4.debian.tar.xz
8faf121eca0a88185200368671d4e2810063afb3 11468
borgbackup_1.2.5-4_source.buildinfo
Checksums-Sha256:
957c57e3704f6436cf1561a15c1c2c1288fa8402d2bdd9b845aba557ed4d5034 2783
borgbackup_1.2.5-4.dsc
bcb0412ea94afa0cf5a3390adb727c2b58781fa69268fd30fb1245732269d6c5 20888
borgbackup_1.2.5-4.debian.tar.xz
aca0e1aba7a92ee99c2afadd2cb2c6092dfb7bbf1c299363c2a969d8e4510866 11468
borgbackup_1.2.5-4_source.buildinfo
Files:
a5ab01d0e4abb984a1af1b04c8ce5fc2 2783 admin optional borgbackup_1.2.5-4.dsc
bfdf0acd7556690061ddfb443e487363 20888 admin optional
borgbackup_1.2.5-4.debian.tar.xz
48c80674fffa6053cf9b645353649adc 11468 admin optional
borgbackup_1.2.5-4_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=Ya7i
-----END PGP SIGNATURE-----
--- End Message ---
