Hi, First of all, thanks to everyone involved for their work on Debian!
So as a relatively new member of the pkg-rpm team (mainly to work on createrepo-c and the packages that it depends), I wondered if it were time to try my hand at helping out with some other packages. Michal, I have cloned the rpm repository to my own Salsa namespace - https://salsa.debian.org/roam/rpm - and I have imported the NMUs from Boyuan Yang and Matthias Klose. BTW, Bouyan, Matthias, do you have Git repos of your work as separate commits, or is it okay to import the *.dsc files in bulk as I've done there? I have then applied (with a slight modification for post-4.16 changes) the two upstream patches that address the three CVEs reported by Moritz Muehlenhoff in #985308. So, Michal, do these changes look reasonable to you? If they do, I can push them to the pkg-rpm/rpm repo itself, upload a new version to unstable, and send an unblock request to the release team. Thanks again to you all, and keep up the great work! G'luck, Peter -- Peter Pentchev r...@ringlet.net r...@debian.org p...@storpool.com PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint 2EE7 A7A5 17FC 124C F115 C354 651E EFB0 2527 DF13
signature.asc
Description: PGP signature
