Alexis Sukrieh wrote:
> tags 329387 + pending
> thanks
>
> Hello,
>
> I've packaged a new version of bugzilla for closing a security issue
> reported on sarge:
>
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=329387
>
> This package is 2.16.7-7sarge2 and is available here:
>
> http://www.sukria.net/debian/source/bugzilla_2.16.7-7sarge2_i386.changes
> http://www.sukria.net/debian/source/bugzilla_2.16.7-7sarge2.diff.gz
> http://www.sukria.net/debian/source/bugzilla_2.16.7-7sarge2.dsc
> http://www.sukria.net/debian/source/bugzilla_2.16.7.orig.tar.gz
>
> It only provides the upstream patch (backported from 2.16.11) that
> closes that security issue : CVE-2005-4534
>
> If an upload is possible to the security archive, that would be great.
The distribution should be stable-security instead of
testing-proposed-updates. Please also remove all the i18n updates:
[EMAIL PROTECTED]:~/chroots/sarge/home/jmm$ debdiff bugzilla_2.16.7-7sarge1.dsc
bugzilla_2.16.7-7sarge2.dsc | diffstat
debian/changelog | 10 +++
debian/po/ca.po | 144 ++++++++++++++++++++++++----------------------
debian/po/cs.po | 140 ++++++++++++++++++++++++---------------------
debian/po/de.po | 144 ++++++++++++++++++++++++----------------------
debian/po/fr.po | 142 ++++++++++++++++++++++++----------------------
debian/po/ja.po | 142 ++++++++++++++++++++++++----------------------
debian/po/nl.po | 144 ++++++++++++++++++++++++----------------------
debian/po/pt_BR.po | 144 ++++++++++++++++++++++++----------------------
debian/po/templates.pot | 148 ++++++++++++++++++++++++------------------------
syncshadowdb | 12 ++-
The security fix itself is fine.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
