Bug#1061983: bullseye-pu: package debian-security-support/1:11+2024.01.30

Holger Levsen Tue, 30 Jan 2024 09:15:43 -0800

Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian....@packages.debian.org
Usertags: pu
X-Debbugs-Cc: debian-security-supp...@packages.debian.org
Control: affects -1 + src:debian-security-support


[ Reason ]
  * Add chromium to security-support-ended.deb11, thanks to Andres Salomon.
    Closes: #1061268
  * Add tiles and libspring-java to security-support-limited. Closes: #1057343

[ Impact ]
Users might not learn that security support for some packages has ended.

[ Risks ]
trivial change, data-only update

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable



The diff is against the version already approved for+in bullseye-p-u:

 debian/.gitlab-ci.yml        |   13 -------------
 debian/changelog             |    9 +++++++++
 security-support-ended.deb11 |    4 +++-
 security-support-limited     |    2 ++
 4 files changed, 14 insertions(+), 14 deletions(-)

The .gitlab-ci.yml is desired and harmless.

The full diff is attached.


-- 
cheers,
        Holger

 ⢀⣴⠾⠻⢶⣦⠀
 ⣾⠁⢠⠒⠀⣿⡁  holger@(debian|reproducible-builds|layer-acht).org
 ⢿⡄⠘⠷⠚⠋⠀  OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
 ⠈⠳⣄

Es war mir eine Lehre, dich kennenzulernen.

diff -Nru debian-security-support-11+2023.12.11/debian/changelog debian-security-support-11+2024.01.30/debian/changelog
--- debian-security-support-11+2023.12.11/debian/changelog	2023-12-22 16:48:41.000000000 +0100
+++ debian-security-support-11+2024.01.30/debian/changelog	2024-01-30 17:55:19.000000000 +0100
@@ -1,3 +1,12 @@
+debian-security-support (1:11+2024.01.30) bullseye; urgency=medium
+
+  * Add chromium to security-support-ended.deb11, thanks to Andres Salomon.
+    Closes: #1061268
+  * Add tiles and libspring-java to security-support-limited. Closes: #1057343
+  * Drop debian/.gitlab-ci.yml.
+
+ -- Holger Levsen <hol...@debian.org>  Tue, 30 Jan 2024 17:55:19 +0100
+
 debian-security-support (1:11+2023.12.11) bullseye; urgency=medium
 
   [ Santiago Ruano Rincón ]
diff -Nru debian-security-support-11+2023.12.11/debian/.gitlab-ci.yml debian-security-support-11+2024.01.30/debian/.gitlab-ci.yml
--- debian-security-support-11+2023.12.11/debian/.gitlab-ci.yml	2023-12-22 16:46:13.000000000 +0100
+++ debian-security-support-11+2024.01.30/debian/.gitlab-ci.yml	1970-01-01 01:00:00.000000000 +0100
@@ -1,13 +0,0 @@
-image: debian:unstable
-
-build: 
-  stage: build
-  
-  before_script:
-    - apt-get update && apt-get -y install devscripts git-buildpackage
-    - mk-build-deps --tool "apt -y -o Debug::pkgProblemResolver=yes --no-install-recommends" --install -r debian/control
-
-  script:
-    - git checkout master
-    - git pull
-    - gbp buildpackage -uc -us
diff -Nru debian-security-support-11+2023.12.11/security-support-ended.deb11 debian-security-support-11+2024.01.30/security-support-ended.deb11
--- debian-security-support-11+2023.12.11/security-support-ended.deb11	2023-12-22 16:47:38.000000000 +0100
+++ debian-security-support-11+2024.01.30/security-support-ended.deb11	2024-01-30 17:51:03.000000000 +0100
@@ -10,6 +10,8 @@
 # 4. Descriptive text or URL with more details (optional)
 #    In the program's output, this is prefixed with "Details:"
 
-tor                      0.4.5.16-1                  2023-11-22  https://lists.debian.org/debian-security-announce/2023/msg00258.html
+chromium                 120.0.6099.224-1~deb11u1    2024-01-23  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061268
 consul                   1.8.7+dfsg1-2               2023-12-04  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1057418
 xen                      4.14.5+94-ge49571868d-1     2023-09-30  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053246
+tor                      0.4.5.16-1                  2023-11-22  https://lists.debian.org/debian-security-announce/2023/msg00258.html
+
diff -Nru debian-security-support-11+2023.12.11/security-support-limited debian-security-support-11+2024.01.30/security-support-limited
--- debian-security-support-11+2023.12.11/security-support-limited	2023-12-22 16:47:38.000000000 +0100
+++ debian-security-support-11+2024.01.30/security-support-limited	2024-01-30 17:55:19.000000000 +0100
@@ -15,6 +15,7 @@
 gnupg1          See #982258 and https://www.debian.org/releases/stretch/amd64/release-notes/ch-whats-new.en.html#modern-gnupg
 kde4libs        khtml has no security support upstream, only for use on trusted content
 khtml           khtml has no security support upstream, only for use on trusted content, see #1004293
+libspring-java  should be only used for building other Debian packages or in a secured local environment with trusted devices.
 mozjs68         Not covered by security support, only suitable for trusted content, see #959804
 mozjs78         Not covered by security support, only suitable for trusted content, see #959804
 ocsinventory-server Only supported behind an authenticated HTTP zone
@@ -26,4 +27,5 @@
 qtwebkit-opensource-src No security support upstream and backports not feasible, only for use on trusted content
 samba           Only non-AD Domain Controller use cases are supported. See https://lists.debian.org/debian-security-announce/2023/msg00169.html
 sql-ledger      Only supported behind an authenticated HTTP zone
+tiles           Only supported for building packages, #1057343
 zoneminder      See README.Debian.security, only supported behind an authenticated HTTP zone, #922724

signature.asc
Description: PGP signature

Bug#1061983: bullseye-pu: package debian-security-support/1:11+2024.01.30

Reply via email to