Your message dated Sun, 25 Feb 2018 02:54:26 +0000 with message-id <e1epmsi-00058g...@fasolo.debian.org> and subject line Bug#878088: fixed in reportbug 7.1.9 has caused the Debian Bug report #878088, regarding reportbug: please inform security and lts teams about security update regressions to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 878088: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878088 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: reportbug Version: 7.1.7 Severity: wishlist Tags: patch Hi, the Debian LTS Team and the Debian Security Team would like to propose a new feature for reportbug. We discussed this at DebConf 17 during the LTS BoF and shortly on debian-lts [1] that it would make sense to inform both teams about regressions introduced by security updates. We usually receive word from the maintainer or users who report issues directly to our mailing lists or IRC channels. However we have also discovered that some regressions were never reported to us. Hence we propose the following feature for reportbug: If the bug is reported against a package with a version number that indicates a security update like +deb7u1 or ~deb8u3, both team mailing lists should be added to CC after the bug reporter confirms that this is a regression caused by a security update. The confirmation check is necessary to prevent too many false positives since similar version strings are used for regular stable updates. However the default is true because it is better to receive one e-mail too many as to miss the regression. Of course this could be changed if it turns out that we receive too many unwarranted reports. Please find attached my proposed patch. Regards, Markus [1] https://lists.debian.org/debian-lts/2017/08/msg00034.htmldiff -Nru reportbug-7.1.7/bin/reportbug reportbug-7.1.7+nmu1/bin/reportbug --- reportbug-7.1.7/bin/reportbug 2017-05-29 22:00:17.000000000 +0200 +++ reportbug-7.1.7+nmu1/bin/reportbug 2017-10-09 01:26:16.000000000 +0200 @@ -1926,6 +1926,22 @@ listcc += ui.get_multiline( 'Enter any additional addresses this report should be sent to; press ENTER after each address.') + # If the bug is reported against a package with a version that + # indicates a security update add the security and lts teams to CC + # after user confirmation + is_security_update = False + if pkgversion: + regex = re.compile('(\+|~)deb\d+u\d+') + if regex.search(pkgversion): + if ui.yes_no('Do you want to report a regression because of a security update? ', + 'Yes, please inform the LTS and security teams.', + 'No or I am not sure.', True): + is_security_update = True + + if is_security_update: + email_address = ['debian-...@lists.debian.org','t...@security.debian.org'] + listcc.extend(email_address) + if severity and rtype: severity = debbugs.convert_severity(severity, rtype)
--- End Message ---
--- Begin Message ---Source: reportbug Source-Version: 7.1.9 We believe that the bug you reported is fixed in the latest version of reportbug, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 878...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Sandro Tosi <mo...@debian.org> (supplier of updated reportbug package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 24 Feb 2018 20:56:22 -0500 Source: reportbug Binary: reportbug python3-reportbug Architecture: source all Version: 7.1.9 Distribution: unstable Urgency: medium Maintainer: Reportbug Maintainers <reportbug-maint@lists.alioth.debian.org> Changed-By: Sandro Tosi <mo...@debian.org> Description: python3-reportbug - Python modules for interacting with bug tracking systems reportbug - reports bugs in the Debian distribution Closes: 878088 888832 Changes: reportbug (7.1.9) unstable; urgency=medium . * bin/reportbug - dont CC secure-testing-t...@lists.alioth.debian.org anymore, the team didnt exit for a long time and the ML will disappear when Alioth will be deco'ed; patch by Moritz Muehlenhoff; Closes: #888832 * bin/reportbug, reportbug/utils.py - notify the security team or TLS team if reporting a bug against an upload contaning a security fix, as a possible regression (upon user confirmation); patch by Markus Koschany and Nis Martensen; Closes: #878088 * Extend copyright years to 2018 Checksums-Sha1: 232fa06827c8f294530e9630351d1fa1c980b649 1818 reportbug_7.1.9.dsc 0da0f9f79c8f4e62ede5b125ceb05d9a4dede56b 371520 reportbug_7.1.9.tar.xz 7b9143302a3aa85e4096e3ac95e9cea85203ed5f 131296 python3-reportbug_7.1.9_all.deb 038cdf1b92e2791b69010748aec637af7dcaa828 129084 reportbug_7.1.9_all.deb 5ff78697bdf40b7fbb7a4acab44cc13d9a8fd63d 7302 reportbug_7.1.9_amd64.buildinfo Checksums-Sha256: b0bb2f56bdb1653988db95a46091141ee56064827b585757327e463d21b421b2 1818 reportbug_7.1.9.dsc 64beccf393c3cc28f8500b971a1d777138ecbda6816874c56438fc31c19616e9 371520 reportbug_7.1.9.tar.xz 2d9fa730066ea6e06f2368b829cc46baf2168d62b7bfba95756cab91939a8977 131296 python3-reportbug_7.1.9_all.deb 6067c8ecde1416d8bc81274d8aab037427dc1c66c2b7accf7e87b191e0cee8ed 129084 reportbug_7.1.9_all.deb d208a7859cc01e7d9cf94a8638dd7ced8b730584f45f28375b1ea5e043f0bbd6 7302 reportbug_7.1.9_amd64.buildinfo Files: 81ecff0393966a69f90753464bc25851 1818 utils standard reportbug_7.1.9.dsc 7a20a8bac298fa6c2309054f3a626bb9 371520 utils standard reportbug_7.1.9.tar.xz 97e9b0442039ff720f644ebc815c1c2c 131296 python standard python3-reportbug_7.1.9_all.deb 22d8aec471bd4842ded699854db5bc70 129084 utils standard reportbug_7.1.9_all.deb 22653d1bda2b9b3e5e843a09fbd38ccd 7302 utils standard reportbug_7.1.9_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEufrTGSrz5KUwnZ05h588mTgBqU8FAlqSGGYACgkQh588mTgB qU+juxAAxnUAF1ITwExaYjfIdLxMtkcd2cIhLFpUO1NF3iuSS6oXOH/Db+XbNh0y 7ldT0M+sQlor6rTmYh0WvgepiGPjXFpn5xU+Z2mLD4lPbVAcBGKmSK4e8y5qm6f/ CQnEQw9pR9e2Eox35JIm7hAV59Vj4DmxwUpZVmxcDtmvnhEf9p5PtUJWmw/sEsyE GO9bfSUvIHdnWM+aJ8iOAU+h4bKBAVJuwNNqgU02NMKDp5X7EFf4jHhhsrho2ofw +FNZ+z3IRiHFs8/sPoscUA8g40P5FRqC8ILwhh0S3icsNRFmW0Xal2qkJrSPkBKv +fa4P6RD7gJsuawU1srruUe/lwSqtYVCCblwMyvP5b7/0PCZoD9BXqlbGzvLHd41 p+3Q0H+JcSM54NKxvpwEnVWPoVE1xSc7xpoxubjDnqCKa0jXN6wI6G8R9GM7wqay BH7y2UtnQ7Viy8IyH/x+X5QoiEl77m18rBT2BY16etb2hl+Qipz32gTJKNdSZIx6 LzAYVvDgjS3aHkSqpHk8i+xTm0CUpwrGqPPprdagUxqL1Heeho/NfJXTP6ktwtId Ga3I8YNrflc4OWH1HTbIP610gr9MQM/tIXsn6198uwXIbAtb9I5LIg7T4xAPuFK2 8bxCRfv7sNDq6v0tHtcdlGd7oNSboI2zTPlCUNU2Vbr9lhkqInk= =Qgyy -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Reportbug-maint mailing list Reportbug-maint@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/reportbug-maint
