Hello, yesterday I implemented a small helper script to help contact the maintainers of packages who have open security issues in Squeeze. It's the securitry tracker repository and works like this:
bin/contact-maintainers --lts [--no-dsa] <pkg> [<cve...>] When you use the --no-dsa flag it will send a mail like this one where we explain that we won't take care of the update but we offer the maintainer an opportunity to take care of it himself: https://lists.debian.org/debian-lts/2015/02/msg00051.html Without the --no-dsa flag it will send a mail like this one where we explain that we have planned an updated, that help is welcome but that someone from the LTS team might start working on it at any point of time: https://lists.debian.org/debian-lts/2015/02/msg00050.html I would welcome comments/reviews/ack on those basic mail templates (they are in templates/lts-*.txt in the repository). One improvement that I would like to do is to move the discussion to the associated bug reports when we do have such open bug reports. This is waiting some easy way to extract this information (#761859 for example). Cheers, PS: The script assumes that you use mutt but you can customize the command excecuted with --mailer='cat {}' for example... PPS: Without the --lts flag it will try to use other (non-existing) templates that the security team could use if they wish. -- Raphaël Hertzog ◈ Debian Developer Support Debian LTS: http://www.freexian.com/services/debian-lts.html Learn to master Debian: http://debian-handbook.info/get/ -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
