Hi Serge & All,
2016-07-21 16:16 GMT+02:00 Serge E. Hallyn :
> Quoting Christian PERRIER (bubu...@debian.org):
>> Quoting Chris Lamb (la...@debian.org):
>> > Hello dear maintainer(s),
>> >
>> > the Debian LTS team would like to fix the security issues which are
>> > currently
Hi Dmitry,
2016-01-25 0:24 GMT+01:00 Dmitry Smirnov :
> On Sat, 23 Jan 2016 07:37:02 PM Thorsten Alteholz wrote:
>> the Debian LTS team would like to fix the security issues which are
>> currently open in the Squeeze version of cakephp:
>>
Hello Diego,
I am contacting you on behalf of the Debian LTS team. Two months ago you
voiced your interest in helping us to fix open security issues in libav.
https://security-tracker.debian.org/tracker/source-package/libav
Can you tell us more about the latest developments? If you have any
Hi Kurt,
I saw that you prepared and uploaded a security update for ntp but you
haven't announced the update yet. Do you want to take care of this
yourself? Then please follow our guidelines here:
https://wiki.debian.org/LTS/Development#Prepare_security_updates_for_Wheezy_LTS
I can send the
Hi Chris,
On Sat, Jul 23, 2016 at 11:27:13AM +0200, Chris Lamb wrote:
> > Needs to be built with -sa ;)
>
> Whoops! I blame the change of pattern re. sponsoring. Just re-uploaded. :)
>
> > (but wait first that the dietlibc version has been built) and avialable.
>
> ACK. Will check in 24h, then
> Needs to be built with -sa ;)
Whoops! I blame the change of pattern re. sponsoring. Just re-uploaded. :)
> (but wait first that the dietlibc version has been built) and avialable.
ACK. Will check in 24h, then do sourceful uploads of minit and mksh.
>From an annoucement point of view, I will
Hi Chris,
On Sat, Jul 23, 2016 at 10:04:53AM +0200, Chris Lamb wrote:
> > Well, then it would be great if someone could upload the fixed
> > package for me. :)
>
> I've uploaded the wheezy version to security-master.
>
> However, whilst I reserved a DLA I have not announced it due to the
>
> Well, then it would be great if someone could upload the fixed
> package for me. :)
I've uploaded the wheezy version to security-master.
However, whilst I reserved a DLA I have not announced it due to the
required binNMUs - it would be pointless, misleading and/or dangerous
as dietlibc is a
Package: squid3
Version: 3.1.20-2.2+deb7u6
CVE ID : CVE-2016-4051
A buffer overflow in the Squid 3's cache manager, identified by the
CVE-2016-4051, was addressed by the DLA-478-1 and the Debian package
version 3.1.20-2.2+deb7u6. However, the fix was incomplete and thus a