On Thu, Oct 29, 2015 at 07:52:23pm +0000, luca wrote: > Package: release.debian.org > Severity: normal > Tags: jessie > User: release.debian....@packages.debian.org > Usertags: pu > > Dear release team, > > We would like to update libvdpau in jessie to address a segmentation fault in > a > particular use case. > > 0.8-3+deb8u1 was uploaded through jessie-security with an upstream fix for 3 > security bugs: CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 (see > https://bugs.debian.org/797895). > > The upstream patch unfortunately introduced a regression when running with > DRI_PRIME=1, as reported by a user in https://bugs.debian.org/802625 and > upstream has committed a fix for it. > > We already uploaded a fixed version to unstable, and now we would like to > backport it to jessie as well. The debdiff follows. I have verified that it > fixes the problem on a vanilla jessie amd64 installation. > > Thank you! > > Kind regards, > Luca Boccassi > > > diff -Nru libvdpau-0.8/debian/changelog libvdpau-0.8/debian/changelog > --- libvdpau-0.8/debian/changelog 2015-09-05 13:14:50.000000000 +0100 > +++ libvdpau-0.8/debian/changelog 2015-10-29 19:30:28.000000000 +0000 > @@ -1,3 +1,10 @@ > +libvdpau (0.8-3+deb8u2) jessie; urgency=medium
The diff looks good, could you change the target to jessie-security and upload to security-master? Also, do you plan to prepare an update for wheezy-security as well? Cheers
signature.asc
Description: PGP signature