Hi,
On 10/11/2019 21:41, Brian May wrote:
> Holger Levsen writes:
>
>> then, just for the record, this was discussed with Raphael and me. Please
>> don't do more hours than assigned without coordination. See "What should
>> I do if I work more than the hours allocated?" in debian-lts.git for
>>
Package: linux
Version: 3.16.76-1
CVE ID : CVE-2019-0154 CVE-2019-11135
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service, or information
leak.
CVE-2019-0154
Intel discovered that on their 8th
Hello all,
In recent days I made an attempt at backporting fixes made upstream in
libqb to address CVE-2019-12779. I requested a review from upstream in
the related GitHub issue [0].
The essence of the discussion is that some important parts of the
upstream changes do not apply to the libqb in
Hi,
Am 12.11.19 um 18:11 schrieb Roberto C. Sánchez:
[...]
> With that in mind, does this seem like a package for which we should
> declare the end of support?
That sounds reasonable to me.
Cheers,
Markus
signature.asc
Description: OpenPGP digital signature
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Tue, 12 Nov 2019 15:56:11 +
Binary: linux-doc-3.16 linux-manual-3.16 linux-source-3.16
linux-support-3.16.0-10
Source: linux
Architecture: all source
Version: 3.16.76-1
Distribution: jessie-security
Urgency: high
Maintainer:
Hi,
(Sylvain, please cc me if you want me to read something in any timely fashion)
On Thu, 07 Nov 2019, Sylvain Beucler wrote:
> Raphael, given that this package is low popcon and the vulnerability is
> fuzzy, do you know if the sponsor for this package would be willing to
> test fixes?
The
Hi Sylvain, hi all,
On Thu, 7 Nov, 2019, 3:19 PM Sylvain Beucler, wrote:
> Hi,
>
> On 06/11/2019 21:14, Utkarsh Gupta wrote:
> > On 06/11/19 11:47 am, Brian May wrote:
> >> Utkarsh Gupta writes:
> >>
> >>> I am not quite sure about what should we do here because the update
> (DLA
> >>> 1956-1)
On Tue, Nov 12, 2019 at 06:53:19PM +0100, Markus Koschany wrote:
> Hi,
>
> Am 12.11.19 um 18:11 schrieb Roberto C. Sánchez:
> [...]
> > With that in mind, does this seem like a package for which we should
> > declare the end of support?
>
> That sounds reasonable to me.
>
Is it as simple as
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Thu, 07 Nov 2019 11:54:30 +0530
Source: libssh2
Binary: libssh2-1 libssh2-1-dev libssh2-1-dbg
Architecture: source amd64
Version: 1.4.3-4.1+deb8u6
Distribution: jessie-security
Urgency: medium
Maintainer: Mikhail Gusarov
