On Sat, Jan 21, 2023 at 10:53:24PM +0100, Markus Koschany wrote:
> Hi Javier,
>
> Am Freitag, dem 20.01.2023 um 22:23 +0100 schrieb Javier Fernandez-Sanguino:
> > Dear Markus,
> >
> > Thank you for preparing. Could you please share the patch you are working
> > on?
> > Snort is available in Salsa. Maybe you could upload / provide there your
> > propose changes in a separate branch?
>
> I'm adding the security team to CC to give them a heads-up because the snort
> update is also relevant for stable and oldstable. I'm not allowed to push to
> your Git repository on salsa. I will just attach my debian directory to the RC
> bug reports next.
>
> First of all I decided to package 2.9.20 because this version seems less
> intrusive than the new 3.x series.
Thanks for fixing up buster/bullseye for existing users (which I think is
best catered by moving to 2.9.20, but I don't think snort should be in Bookworm:
- No upload since almost 1.5 years, zero followup to #1019230 or #1021276 until
your poke
- What's worse: The security progress is completely intransparent, apart from
dropping new releases with vague Cisco advisories
Cheers,
Moritz
