Hi Chris, On Fri, Aug 11, 2017 at 07:50:21AM -0400, Chris Lamb wrote: > Dear maintainer(s), > > The Debian LTS team would like to fix the security issues which are > currently open in the Wheezy version of mercurial: > https://security-tracker.debian.org/tracker/source-package/mercurial
There are backports for 3.7[0] and 4.1.3[1], which may be helpful. [0] https://bitbucket.org/atlassian/mercurial/commits/branch/sec-3.7 [1] https://bitbucket.org/octobus/mercurial-backport/branch/backport-4 > Would you like to take care of this yourself? No, I am not maintaining mercurial any more. > If yes, please follow the workflow we have defined here: > https://wiki.debian.org/LTS/Development > > If that workflow is a burden to you, feel free to just prepare an > updated source package and send it to [email protected] > (via a debdiff, or with an URL pointing to the source package, > or even with a pointer to your packaging repository), and the members > of the LTS team will take care of the rest. Indicate clearly whether you > have tested the updated package or not. > > If you don't want to take care of this update, it's not a problem, we > will do our best with your package. Just let us know whether you would > like to review and/or test the updated package before it gets released. > > You can also opt-out from receiving future similar emails in your > answer and then the LTS Team will take care of mercurial updates > for the LTS releases. I did a while ago. I'm happy for the LTS team to take care of mercurial updates for LTS releases. Cheers, Javi
