Hello Antoine, On Tue, 29 Dec 2015, anarcat wrote: > Hello dear maintainers of the Redmine packages! > > The Debian LTS team would like to fix the security issues which are > currently open in the Squeeze or Wheezy versions of redmine:
I believe that Redmine is de-facto excluded from security support because it depends on Rails which is not supported: http://lists.debian.org/[email protected] We should make this explicit because we made the mistake multiple times... and I believe this is true both for Squeeze and Wheezy right now. I have thus pushed the attached patch to the git repository of debian-security-support. Ccing the security team to inform them of this change. Cheers, -- Raphaël Hertzog ◈ Debian Developer Support Debian LTS: http://www.freexian.com/services/debian-lts.html Learn to master Debian: http://debian-handbook.info/get/
commit 31baf0bd9d2cfe75d7b8193a2954dbb9eea6d0e6 (HEAD -> master) Author: Raphaël Hertzog <[email protected]> Date: Wed Dec 30 10:20:01 2015 +0100 Mark redmine as unsupported in squeeze and wheezy due to the fact that it depends on rails which is not supported. diff --git a/debian/changelog b/debian/changelog index 9327732..410b167 100644 --- a/debian/changelog +++ b/debian/changelog @@ -11,6 +11,8 @@ debian-security-support (2015.08.13) UNRELEASED; urgency=medium * Mark xbmc and kodi as unsupported in all releases. Closes: #791867 * Mark qtwebkit-opensource-src as unsupported in all releases. Closes: #799189 + * Mark redmine as unsupported in squeeze and wheezy due to the fact that + it depends on rails which is not supported. -- Salvatore Bonaccorso <[email protected]> Thu, 13 Aug 2015 21:45:20 +0200 diff --git a/security-support-ended.deb6 b/security-support-ended.deb6 index 834fa24..352e034 100644 --- a/security-support-ended.deb6 +++ b/security-support-ended.deb6 @@ -39,6 +39,7 @@ piwigo 2.1.2-3 2015-02-24 Not supported in squeeze LTS qemu 0.12.5+dfsg-3squeeze4 2014-12-11 https://bugs.debian.org/772858 qemu-kvm 0.12.5+dfsg-5+squeeze11 2014-05-31 Not supported in squeeze LTS rails 2.3.5-1.2+squeeze8 2014-05-31 Not supported in squeeze LTS +redmine 1.0.1-2 2014-05-31 Depends on rails which is not supported serendipity 1.5.3-2 2014-05-31 Not supported in squeeze LTS smarty 2.6.26-0.2+squeeze1 2014-05-31 Not supported in squeeze LTS smarty3 3.0~rc1-1 2014-05-31 Not supported in squeeze LTS diff --git a/security-support-ended.deb7 b/security-support-ended.deb7 index 0417cfe..ce5c117 100644 --- a/security-support-ended.deb7 +++ b/security-support-ended.deb7 @@ -19,4 +19,5 @@ ruby-activeresource-2.3 2.3.14-3 2014-07-19 https://lists.debia ruby-actionmailer-2.3 2.3.14-3 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html ruby-activesupport-2.3 2.3.14-7 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html ruby-rails-2.3 2.3.14-4 2014-07-19 https://lists.debian.org/debian-security-announce/2014/msg00164.html +redmine 1.4.4+dfsg1-2+deb7u1 2014-07-19 Depends on ruby-rails-2.3 which is not supported typo3-src 4.5.19+dfsg1-5+wheezy4 2015-07-23 https://lists.debian.org/debian-security-announce/2015/msg00210.html
