On Thursday 23 September 2010, Adam D. Barratt wrote: > On Wed, September 22, 2010 21:51, Stefan Fritsch wrote: > > please binNMU dar in stable in order to link dar-static > > with libbz2-dev 1.0.5-1+lenny1 for DSA-2112-1/CVE-2010-0405 > > Is there a particular reason this isn't being done via -security, > as the dpkg binNMUs were?
The dar source is not yet on security-master, so a sourceful upload would have been necessary. And the probability of users using dar- static on untrusted files seems relatively low, so it's just a minor issue. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
