@@ -1,3 +1,9 @@
+shorewall (4.5.5.3-3) unstable; urgency=low
+
+ * Correct deficient behavior in handling of DNAT and SNAT packets
+
+ -- Roberto C. Sanchez robe...@connexer.com Sat, 20 Oct 2012 21:36:27 -0400
+
shorewall (4.5.5.3-2) unstable; urgency=low
* Update README.Debian to identify
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Please unblock package shorewall
New upstream point release
c.f. http://lists.debian.org/debian-release/2012/07/msg00093.html
unblock
package
done and uploaded (by my sponsor) by tomorrow.
Comments would be appreciated.
-Roberto
[0] http://lists.debian.org/debian-legal/2005/07/msg00040.html
[1] http://packages.debian.org/httperf
--
Roberto C. Sanchez
http://familiasanchez.net/~sanchezr
pgp48hFSwc7Gi.pgp
Description: PGP signature
that it is possible to build the new kernel
inside of a chroot (or sbuild or pbuilder) if kernel-package is being
used.
I am simply pointing out that there is a potential issue that needs to
at least be addressed in the release notes.
-Roberto
--
Roberto C. Sanchez
http://familiasanchez.net/~roberto
would likely not have as many people going through the process of
becoming DDs.
Caveats: IANAL, YMMV, IMHPTPCOOFMRE (I may have pulled the preceding
completely out of my rear end)
-Roberto
--
Roberto C. Sanchez
http://familiasanchez.net/~roberto
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED
anything if they are still in there.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
://bugs.debian.org/397032
Thus, I believe it should be removed from etch.
Please cc: I'm not subscribed.
Given those criteria, I would think the better course of action would be
to remove it altogether.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http
a year, I think it is not right to lead the users on.
I would recommend to remove the package entirely and then include
something in the release notes mentioning possible alternatives.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This request is for unblocking of a new upstream release of the
following Shorewall project packages:
shorewall/4.4.11.4-1
shorewall6/4.4.11.4-1
shorewall-lite/4.4.11.4-1
shorewall6-lite/4.4.11.4-1
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I have uploaded the new upstream release of luabind (0.9.1+dfsg-1). If
this could be unblocked, it would be good. However, if that is not
possible, please feel free to close this bug with no action.
A
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I have uploaded the new upstream release of luabind (0.9.1+dfsg-2). If
this could be unblocked, it would be good. However, if that is not
possible, please feel free to close this bug with no action.
A
nested macro call.
+
+ -- Roberto C. Sanchez robe...@connexer.com Sun, 28 Nov 2010 21:34:05 -0500
+
shorewall (4.4.11.6-2) unstable; urgency=low
* Incorporate patch from upstream: Fix 10+ TC Interfaces.
diff -Nru shorewall-4.4.11.6/debian/patches/02_macro_JAP.patch shorewall-4.4.11.6/debian
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The libalien-wxwidgets-perl package Build-Depends on
'libextutils-cbuilder-perl (= 0.24)' and it appears to have caused the
recent build failures. The libextutils-cbuilder-perl package is now
provided
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
It looks like shorewall and shorewall6 are in need of some manual
hinting. Please ensure their propagation into testing.
Regards,
- -Roberto
- -- System Information:
Debian Release: 5.0.3
APT
Package: release.debian.org
Severity: minor
It appears that both shorewall and shorewall6 are stuck and require
manual hinting for testing propagation. Please hint them.
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Package: release.debian.org
Severity: normal
The shorewall and shorewall6 packages require manual hinting to move to
testing. Please hint.
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: OpenPGP digital
This did not seem to get any attention on debian-devel, so I am cross
posting to debian-release. I would really be interested to know if
others think that the binNMU approach suggested by Matthias is
acceptable and/or viable.
Regards,
-Roberto
Roberto C. Sanchez wrote:
Matthias Klose wrote
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The shorewall and shorewall6 packages require manual hinting in order to
enter testing. Please allow them to migrate.
Regards,
- -Roberto
- -- System Information:
Debian Release: 5.0.4
APT prefers
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The shorewall and shorewall6 packages require manual hinting in order to
propogate. Please provide the hint.
Regards,
- -Roberto
- -- System Information:
Debian Release: 5.0.4
APT prefers stable
Package: release.debian.org
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The shorewall and shorewall6 packages are stuck and in need of manual
hinting.
Regards,
- -Roberto
- -- System Information:
Debian Release: 5.0.4
APT prefers stable
APT policy: (500, 'stable')
.
(latest bug activity: 25. November)
Sorry to be unable to help.
Check the report with which it was merged (#398534). There is a much
lengthier discussion there.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description
after Etch is released)
If these seem OK, can I go ahead with them?
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
not
file an RC bug against it, how will it be removed?
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
Please hint sword-text-kjv (2.3-1) and sword-text-sparv (1.1-1) into
Etch. Both have been in for 5 days and neither had any open bugs.
(They would have been in sooner, but I had trouble finding a sponsor for
the upload).
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com
. In fact, the new
libsasl2-modules-gssapi-mit package replaces and conflicts with the one
produced by cyrus-sasl2-mit. Thus, the upgrade path has already been
planned and implemented.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
, which isn't the same thing.
SNIP detailed explanation
OK. Makes sense now. Thanks for the explanation.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
On Tue, Dec 12, 2006 at 12:02:37PM +0100, Andreas Barth wrote:
* Roberto C. Sanchez ([EMAIL PROTECTED]) [061211 18:04]:
Please hint sword-text-kjv (2.3-1) and sword-text-sparv (1.1-1) into
Etch. Both have been in for 5 days and neither had any open bugs.
(They would have been in sooner
to just be a dummy package which
depends upon libsasl2-modules-gssapi-mit?
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
security update
to libc6 or the release of Lenny (whichever comes first) the package
will be forcibly removed anyway. Another possibility would be to have
it depend on exactly the version of libc6 Etch releases with.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http
/sysklogd_1.4.1-20/changelog
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
,
-Roberto
[0] http://release.debian.org/upgrade-report.html
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
On Sun, Dec 24, 2006 at 10:48:52AM +0100, Andreas Barth wrote:
* Roberto C. Sanchez ([EMAIL PROTECTED]) [061224 02:10]:
A Google search for debian upgrade reports (no quotes) returns a page
[0] that is out of date since it is a template for a woody - sarge
upgrade. I would like
if you
like.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
that there are other examples.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
hesitation.
That is awesome. One of my biggest annoyances is I have is keeping
Eclipse updated with its convoluted update mechanism across several
machines.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description
the linux-image on a domU, for example. Am I missing
something?
Yes. This prevents users who install a kernel with 'make menuconfig
make ad infinitum ...' from using this package at all.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
? That had nothing to do with the timeline versus
when it's ready debate and had everything to do with trying to
accelerate the process in general.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
process so that it would happen
on time *without* sacrificing the desired stability.
Regards,
-Roberto
--
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com
signature.asc
Description: Digital signature
that people are not left with
only empty directories and a non-function DB.
-Roberto
--
Roberto C. Sanchez
http://familiasanchez.net/~sanchezr
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Christian Hammers wrote:
Hello
[1st issue - dpkg symlink bug workaround]
On 2005-05-18 Roberto C. Sanchez wrote:
Quoting sean finney [EMAIL PROTECTED]:
SNIP
so at this point, we're not sure what to do to cover this last problem,
as we have no guarantee the preinst of mysql-server-4.1
of upgrading rather
minimal. Besides, with the security team keeping up security support of
oldstable for 12 months or more (that is the number I recall seeing) it
seems like nobody would be forced to upgrade until 12 months after
whatever day the next release ships.
-Roberto
--
Roberto C. Sanchez
/cyrus-sasl2-mit-dbg.dirs:
+ - create /usr/lib/debug/usr/lib/sasl2/.
++ debian/rules:
+ - mv MIT libgssapiv2.so.2.0.23 into cyrus-sasl2-mit-dbg.
+
+ [ Roberto C. Sanchez ]
+ * Thanks to Luca Capello for providing the patch.
+
+ -- Roberto C. Sanchez robe...@connexer.com Sat, 18 Dec
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Affected packages:
(unstable)roberto@miami:~$ apt-cache rdepends libsasl2-2
libsasl2-2
Reverse Depends:
znc
ziproxy
subversion
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
nmu mumps_4.10.0.dfsg-3 . s390x . -m Binary-only non-maintainer upload for
s390x; no source changes.
I am not 100% certain on this, but I
+
+ * Fix init script so that start/stop works in the default configuration
+(Closes: #771754)
+
+ -- Roberto C. Sanchez robe...@connexer.com Mon, 01 Dec 2014 21:46:54 -0500
+
shorewall-init (4.6.4.3-1) unstable; urgency=low
* New Upstream Version
diff -Nru shorewall-init-4.6.4.3/debian
@@
+shorewall (4.6.4.3-2) unstable; urgency=low
+
+ * Depend upon perl instead of perl-modules (Closes: #779119)
+
+ -- Roberto C. Sanchez robe...@connexer.com Sat, 28 Feb 2015 17:07:05 -0500
+
shorewall (4.6.4.3-1) unstable; urgency=low
* New Upstream Version
diff -Nru shorewall-4.6.4.3
-0400
@@ -1,3 +1,9 @@
+cpuset (1.5.6-4+deb8u1) jessie; urgency=high
+
+ * Update filesystem namespace prefix patch (Closes: #796893)
+
+ -- Roberto C. Sanchez <robe...@connexer.com> Tue, 13 Oct 2015 23:46:35 -0400
+
cpuset (1.5.6-4) unstable; urgency=low
* Update Standards-Version to
Upstream Version
+
+ -- Roberto C. Sanchez <robe...@connexer.com> Mon, 03 Apr 2017 11:03:18 -0400
+
shorewall-core (5.0.15.2-1) unstable; urgency=medium
* New Upstream Version
diff -Nru shorewall-core-5.0.15.2/install.sh shorewall-core-5.0.15.6/install.sh
--- shorewall-core-5.0.15.2/insta
was overly restrictive in counting PNG image chunks.
+ * CVE-2018-16336: remote denial of service (heap-based buffer over-read) via
+a crafted image file.
+
+ -- Roberto C. Sanchez Sat, 20 Oct 2018 22:43:10 -0400
+
exiv2 (0.25-3.1+deb9u1) stretch-security; urgency=high
* Non-maintainer
bian/changelog b/debian/changelog
index 89e1be53..321304ed 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+shorewall (5.2.3.2-1) unstable; urgency=medium
+
+ * New Upstream Version
+
+ -- Roberto C. Sanchez Sat, 23 Mar 2019 21:40:05 -0400
+
shorewall (5.2.3.1-1) uns
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
My upload of rubyluabridge 0.8.0-2 was a binary upload built on amd64.
This is because the package is maintained with mercurial-buildpackage
/changelog 2016-12-18 16:01:07.0
-0500
+++ php-horde-5.2.13+debian0/debian/changelog 2019-12-13 21:10:06.0
-0500
@@ -1,3 +1,9 @@
+php-horde (5.2.13+debian0-1+deb9u1) stretch; urgency=high
+
+ * Fix CVE-2019-12095: Stored XSS vuln in the Horde Cloud Block.
+
+ -- Roberto C. Sanchez
-25 15:08:21.0
-0400
+++ php-horde-5.2.20+debian0/debian/changelog 2019-12-13 21:13:53.0
-0500
@@ -1,3 +1,9 @@
+php-horde (5.2.20+debian0-1+deb10u1) buster; urgency=high
+
+ * Fix CVE-2019-12095: Stored XSS vuln in the Horde Cloud Block.
+
+ -- Roberto C. Sanchez Fri, 13 Dec
-8518:
+The Horde Application Framework contained a remote code execution
+vulnerability. An authenticated remote attacker could use this flaw to
+cause execution of uploaded CSV data. (Closes: #951537)
+
+ -- Roberto C. Sanchez Fri, 10 Apr 2020 19:58:12 -0400
+
php-horde-data (2.1.4-3
)
+
+ -- Roberto C. Sanchez Fri, 10 Apr 2020 20:32:35 -0400
+
php-horde-trean (1.1.7-1) unstable; urgency=medium
* New upstream version 1.1.7
diff -Nru
php-horde-trean-1.1.7/debian/patches/0001-CVE-2020-8865-SECURITY-Fix-Directory-Traversal-Vulerability.patch
php-horde-trean-1.1.7/debian
)
+
+ -- Roberto C. Sanchez Fri, 10 Apr 2020 20:31:30 -0400
+
php-horde-trean (1.1.9-3) unstable; urgency=medium
* Update Standards-Version to 4.1.4, no change
diff -Nru
php-horde-trean-1.1.9/debian/patches/0001-CVE-2020-8865-SECURITY-Fix-Directory-Traversal-Vulerability.patch
php-horde
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Please find attached a proposed debdiff for php-horde-form. The change
fixes CVE-2020-8866, which the security team has classified
user.
+(Closes: #955020)
+
+ -- Roberto C. Sanchez Tue, 24 Mar 2020 13:55:11 -0400
+
php-horde-form (2.0.18-3.1) unstable; urgency=high
* Non-maintainer upload.
diff -Nru
php-horde-form-2.0.18/debian/patches/0002-SECURITY-Prevent-ability-to-specify-temporary-filename.patch
php-horde
execution
+vulnerability. An authenticated remote attacker could use this flaw to
+cause execution of uploaded CSV data. (Closes: #951537)
+
+ -- Roberto C. Sanchez Fri, 10 Apr 2020 19:57:00 -0400
+
php-horde-data (2.1.4-5) unstable; urgency=medium
* Update Standards-Version to 4.1.4
/${branch_name}/${revision}/${version_id}/${build_id}/${execution}/mongo-c-driver-rpm-packages.tar.gz',
content_type='${content_type|application/x-gzip}')]),
NamedTask('install-uninstall-check-mingw',
depends_on=OD([('name', 'make-release-archive'),
diff -N
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Dear Release Team,
[ Reason ]
I would like to fix CVE-2020-11022 and CVE-2020-11023. The same fix has
been prepared for stretch
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
OSRM,
I have prepared a follow-up update of rustc-mozilla for buster (c.f.
#1001043). This update fixes build failures on i386 and
Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
SRM,
In preparing the rustc 1.51 upload/backport (to support backports of the
latest firefox-esr and thunderbird packages) it has
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hello release managers,
In order to support the update of rustc in buster, which in turn is
needed to support the updates of
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
OSRM,
To support updates to firefox-esr and thunderbird, I have prepared a
rustc update. Note that the updated source package is
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
[ Reason ]
In preparation for the final buster point release before the transition
to LTS, it would be beneficial for users to update the apache2 package
to address the currently
67 matches
Mail list logo