Hi Ben
I can confirm that we do not encounter the troubles anymore with your
patch. The patched servers are running smooth and stable again.
Thanks for the fast fix!
Kind regards
Emanuel
On 30/03/2019 05:15, Ben Hutchings wrote:
> I've uploaded a new version of linux to:
> https://people.debia
For March I spent 12 hours on the following LTS tasks:
- symfony: final review of patches, additional testing, advisory
preparation, package upload
- qemu: review Hugo Lefeuvre’s assessment of CVE-2019-6501
- nss: CVE-2018-12404
- imagemagick: multiple issues, assess backport of newer version
-
short update: the system is still up and running.
Cheers,
Werner
Am 30.03.19 um 19:01 schrieb Werner Detter:
> Hi Ben,
>
> thanks for the updated version. I've installed the new version on one
> affected machine which crashed after some hours with the old kernel.
> It's currently running with t
Thanks a lot Adam for the clarification.
Now that Jessie is in LTS and that jessie-updates/ is gone, does this
also mean there won't be any other updates to tzdata, clamav, or
similar (timely dependent's) packages ?
Or if still updated, where does we got them from ? I guess it's not
from security
Hi Scott and LTS team
Thank you. I'll see if I can backport the required fixes. That may solve
the library issue.
Alternatively we state that clamav is not supported. Maybe someone in the
LTS team can advice on that.
Best regards
// Ola
On Sun, 31 Mar 2019 at 22:35, Scott Kitterman wrote:
>
I believe you've misunderstood.
The version in stable is 0.100.3 and does not have a soname bump (nor does it
need one). You should be able to update the LTS with that package with little
more (maybe no more) than an updated changelog.
Scott K
On Monday, April 01, 2019 02:46:34 PM Ola Lundqvi
On Mon, Apr 01, 2019 at 02:29:23PM +0200, Pierre Fourès wrote:
> Now that Jessie is in LTS and that jessie-updates/ is gone, does this
> also mean there won't be any other updates to tzdata, clamav, or
> similar (timely dependent's) packages ?
no.
> Or if still updated, where does we got them fr
On Mon, Apr 01, 2019 at 02:29:23PM +0200, Pierre Fourès wrote:
Now that Jessie is in LTS and that jessie-updates/ is gone, does this
also mean there won't be any other updates to tzdata, clamav, or
similar (timely dependent's) packages ?
no.
good.
Or if still updated, where does we got them
Thanks Holger,
If I understood good, this mean that tzdata will get updated through
"deb http://security.debian.org/ jessie/updates main" even if it's not
a "security" update per se ?
So, to Jessie users, everything work as expected (we still get not
security updates) even if it doesn't goes thro
On 01/04/2019 15:51, Pierre Fourès wrote:
> Thanks Holger,
>
> If I understood good, this mean that tzdata will get updated through
> "deb http://security.debian.org/ jessie/updates main" even if it's not
> a "security" update per se ?
Yes. tzdata and other such updates go into jessie-security be
On 01/04/2019 15:50, Matus UHLAR - fantomas wrote:
>> this is gone:
>>
>> deb http://deb.debian.org/debian/ jessie-updates main
>
> formerly volatile.
>
> We have asked if it's going to be re-added, even if empty, to avoid people
> using jessie from seeing errors when updateing package lists.
>
Le lun. 1 avr. 2019 à 16:04, Emilio Pozuelo Monfort a écrit :
>
> On 01/04/2019 15:51, Pierre Fourès wrote:
> > Thanks Holger,
> >
> > If I understood good, this mean that tzdata will get updated through
> > "deb http://security.debian.org/ jessie/updates main" even if it's not
> > a "security" up
hi,
I've just unclaimed these packages after two weeks of inactivity:
LTS:
-firmware-nonfree (Emilio)
eLTS:
-firmware-nonfree (Emilio)
-mysql-5.5 (Emilio)
-python2.6 (Roberto C. Sánchez)
-sqlalchemy (Markus Koschany)
As usual, feel free to reclaim and/or update the notes.
--
tschau,
hi,
the number of missing DLAs on https://www.debian.org/lts/security/ has
recently gone up again. Missing are:
Emilio Pozuelo Monfort [DLA 1746-1] drupal7 security update
Emilio Pozuelo Monfort [DLA 1745-1] libdatetime-timezone-perl new upstream
version
Emilio Pozuelo Monfort [DLA 1744-1] tzdat
Hello,
On Mon, Apr 01, 2019 at 03:50:05PM +0200, Matus UHLAR - fantomas wrote:
> On 01.04.19 13:40, Holger Levsen wrote:
> >this is gone:
> >
> >deb http://deb.debian.org/debian/ jessie-updates main
>
> formerly volatile.
>
> We have asked if it's going to be re-added, even if empty, to avoid pe
Hi,
Is there a rationale on why we are updating the website, by the way?
And with a full copy of the advisory?
(instead of e.g. pointing to the list archives).
I wondered whether we needed translations at:
https://lists.debian.org/debian-lts/2019/03/msg00101.html
https://lists.debian.org/debian-lt
Hi,
as we now all know the last LTS kernel upgrade badly broke systems on
VMware. I don't think this is completely avoidable, but maybe there are
things that could be improved.
As long as we have Jessie systems (and also for Stretch once it is in
LTS) we would be willing to run some staging syste
On Mon, Apr 01, 2019 at 09:30:20PM +0200, Bernhard Schmidt wrote:
> As long as we have Jessie systems (and also for Stretch once it is in
> LTS) we would be willing to run some staging systems and even parts of
> the production systems on some sort of -proposed repository. If there
> are more users
On Mon, 2019-04-01 at 21:30 +0200, Bernhard Schmidt wrote:
> Hi,
>
> as we now all know the last LTS kernel upgrade badly broke systems on
> VMware. I don't think this is completely avoidable, but maybe there are
> things that could be improved.
>
> As long as we have Jessie systems (and also for
On 4/1/19 3:50 PM, Matus UHLAR - fantomas wrote:
We have asked if it's going to be re-added, even if empty, to avoid people
using jessie from seeing errors when updateing package lists.
do I have to fill a bugreport to get it back?
Yes, do it please.
On Mon, 2019-03-25 at 17:20 +, Ben Hutchings wrote:
> On Tue, 2019-03-05 at 22:00 +, Ben Hutchings wrote:
> > On Fri, 2019-03-01 at 14:05 +0100, Emilio Pozuelo Monfort wrote:
> [...]
> > > (It
> > > may be unlikely for old suites to have users with new hardware, however
> > > it's
> > > po
Holger Levsen writes:
> If somebody picks up the rest, I'd also be really thankful. And probably
> not just me! ;)
I would be willing to help here, however don't want to step on anybodies
toes...
Has anybody considered writing a script (assuming such a thing doesn't
already exist) that will som
Hi Mike
While working on an update for libssh2 first for buster and stretch
for the recent CVEs I noticed that the libssh2 update might have a
problem with one patch, when I compared with the jessie LTS update.
Upstream did wrongly apply some checks, which resulted
https://github.com/libssh2/libs
23 matches
Mail list logo