Re: Accepted cacti 0.8.7g-1+squeeze9+deb6u13 (source all) into squeeze-lts

Hi Chris, On 04-01-16 13:20, Chris Lamb wrote: > cacti (0.8.7g-1+squeeze9+deb6u13) squeeze-lts; urgency=high > . >* Correct yet another regression in patch for CVE-2015-8369, introduced in > 0.8.7g-1+squeeze9+deb6u12. Thanks to Marcel Meckel > (Closes:

[SECURITY] [DLA 374-3] cacti regression update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: cacti Version: 0.8.7g-1+squeeze9+deb6u13 CVE ID : CVE-2015-8369 Debian Bug : 807599 It was discovered that there was a regression in the patch intended to fix CVE-2015-8369 in the recent upload of cacti

Re: Accepted cacti 0.8.7g-1+squeeze9+deb6u13 (source all) into squeeze-lts

> Apart from your weird continuation of the squeeze version numbers ;), > thanks a lot for the cacti updates in lts. Well, once I started for this particular cacti version, I can hardly obstinately backtrack :) > To be honest, I would have expected you would have shared your fix somewhere, >

[SECURITY] [DLA 380-1] libvncserver security update

Package: libvncserver Version: 0.9.7-2+deb6u2 An issue had been discovered and resolved by the libvncserver upstream developer Karl Runge addressing thread-safety in libvncserver when libvncserver is used for handling multiple VNC connections [1]. Unfortunately, it is not

Re: Accepted linux-2.6 2.6.32-48squeeze18 (all source) into squeeze-lts

On Mon, 2016-01-04 at 08:32 +0100, Jan Ingvoldstad wrote: > On 01/02/2016 06:06 PM, Ben Hutchings wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA512 > > > > Format: 1.8 > > Date: Sat, 02 Jan 2016 03:31:10 + > > Source: linux-2.6 > > We're getting a warning about invalid signature

Re: squeeze update of tiff?

Hi László, hi Ondřej, On Do 31 Dez 2015 19:01:33 CET, László Böszörményi (GCS) wrote: On Thu, Dec 31, 2015 at 10:04 AM, Ondřej Surý wrote: I have a git mirror[1] (git cvsimport) of upstream CVS and right now it's a tad bit confusing which patches are relevant to those