Your message dated Sat, 10 May 2014 07:47:23 +0200
with message-id <[email protected]>
and subject line chrony in squeeze (amd64)
has caused the Debian Bug report #726817,
regarding chrony: GPL-2-only program linking GPL-3+ libreadline6 on amd64
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
726817: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=726817
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: chrony
Severity: serious
Version: 1.24-3+squeeze1
X-Debbugs-Cc: [email protected], [email protected]

The security update for chrony links against libreadline6 on
amd64. However chrony is licensed under GPL-2-only and libreadline6 is
GPL-3-or-later.

The buildd uploads still link against libreadline5 (GPL-2+). So it looks
like the amd64 version was built in an unclean environment.

So chrony needs either
a, a binNMU on amd64 for the next point release, leaving the current
   version on security.d.o, or
b, a sourceful upload that changes the build-depends to
   libreadline-gplv2-dev with no alternative (to require the GPL-2+
   version). This could also replace the version currently in the
   security archive.

Ansgar

--- End Message ---
--- Begin Message ---
Version: 1.24-3+squeeze1+b1

chrony in squeeze on amd64 was binNMU-ed (on 2013-10-22) and the rebuild
package is in squeeze.

Paul

Attachment: signature.asc
Description: OpenPGP digital signature


--- End Message ---

Reply via email to