The drupal5 packages were mistakenly uploaded to the private security ppa; I copied them over to the public security-proposed ppa at https://launchpad.net/~ubuntu-security-proposed/+archive/ppa/ ; please test and report feedback here.
For the drupal6 debdiffs, I examined the patch to fix SA-CORE-2010-002; the only difference that I could see between it and the upstream commit at http://git.drupalfr.org/cgi-bin/gitweb.cgi?p=core/new- date.git;a=commitdiff;h=d9e273d82fd427115642f2e6c2fbefcb661a2115 was that the dpatch had dropped the changelog entry, VCS tag id updates, and a gratuitous whitespace change -- I do find it's helpful for reviewers when I adjust patches like that to add a note in the patch header that I've done so. I adjusted the debian/changelog entries to give a better description of the issues and uploaded the packages to the security proposed ppa, again at https://launchpad.net/~ubuntu-security-proposed/+archive/ppa/ ; please test and report feedback here. Thanks again! ** Changed in: drupal6 (Ubuntu Karmic) Status: Incomplete => In Progress ** Changed in: drupal6 (Ubuntu Lucid) Importance: Undecided => Medium ** Changed in: drupal6 (Ubuntu Lucid) Status: Incomplete => In Progress ** Changed in: drupal6 (Ubuntu Karmic) Importance: Undecided => Medium ** Changed in: drupal5 (Ubuntu Karmic) Importance: Undecided => Medium ** Changed in: drupal5 (Ubuntu Hardy) Importance: Undecided => Medium -- You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. https://bugs.launchpad.net/bugs/539056 Title: backport security fixes from 6.19 and 5.23 -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
