Re: [Pkg-rust-maintainers] Processed: bugs

retitle 860989 cargo: embeds a copy of libgit2 affected by CVE-2016-8568 CVE-2016-8569 retitle 860990 cargo: embeds a copy of libgit2 affected by CVE-2016-10128 CVE-2016-10129 CVE-2016-10130 Debian Bug Tracking System: > Processing commands for cont...@bugs.debian.org: > [..] Note that this is

Bug#857068: Bump libgit2 version to upstream release 0.25.1

Source: libgit2 Version: 0.24.5-1 Followup-For: Bug #857068 Hey, this would be useful for the cargo package. (see #860116) At the moment we have to embed libgit2 0.25.1 in the cargo source package, this is not ideal for Debian especially given that there was already a CVE and it's not obvious to

Re: [Pkg-mozext-maintainers] Handling of "malware" in Debian

W. Martin Borgert: > On 2016-11-09 19:34, Ximin Luo wrote: >> Context for the new list you added, please? > > #842939 > > Is it OK, if I do the upload? I'm in the team, but David Prévot > did previous uploads. > Yes, go ahead and do the upload, it's what team ma

Re: [Pkg-mozext-maintainers] Handling of "malware" in Debian

Holger Levsen: > On Wed, Nov 09, 2016 at 04:17:58PM +0100, W. Martin Borgert wrote: >> Would NEWS.Debian be sufficient? > > I think so. And I also think this should be done. > > and, who's gonna file the RM bug for unstable? > Context for the new list you added, please? -- GPG: