On 2012-12-12 10:58, Dominik George wrote: > Dear release managers, > > today, I chose to fix RC bug #694998. It is a security issue with > MediaWiki 1.19.2 currently in testing, and there are two ways of fixing > this issue. The easiest would be to get the new upstream version 1.19.3 > into testing. I created the new package and a debdiff [2]. This diff is > quite large because the update also incorporates tons of translation > updates. > > The other possibility is to backport the changes for the security fixes to > 1.19.2, which is also non-problematic. I prepared a debdiff for that as > well [3]. > > The question is if the release team would grant a freeze exception for the > new upstream version 1.19.3, maybe considering the translation changes > non-critical? > > Looking forward to your feedback, > Nik > > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694998 > [2] http://shore.naturalnet.de/~nik/mediawiki_1.19.2-2_1.19.3-0.1.debdiff > [3] http://shore.naturalnet.de/~nik/mediawiki_1.19.2-2_1.19.2-2.1.debdiff > > >
Hi, If 1.19.3 is just the security fix + translations, I'd be willing to allow the translations as well. If there is more changes beyond that then "it depends" (defaulting to "no"). Can you provide us with a filtered debfiff of the 1.19.3? Just remember to let us know what filtering you used (e.g. filterdiff -x '*/messages/Messages*.php' ). ~Niels -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
