Your message dated Mon, 09 Dec 2024 20:39:09 +0000
with message-id <[email protected]>
and subject line Bug#1087882: fixed in needrestart 3.8-0.1
has caused the Debian Bug report #1087882,
regarding please ship 3.8 to unstable
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1087882: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1087882
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: needrestart
Version: 3.7-3.1
Severity: wishlist
Hi Patrick!
So a major security issue came out in needrestart, as you undoubetly
know! :)
We've been maintaining a couple patches over needrestart 3.7 at
torproject.org (mainly for prometheus monitoring) and we need to
reroll them on top of the new security issues.
I'm wondering if I should work on top of the unstable NMU from the
security team or somehow figure out how to package 3.8 directly.
Were you planning on updating to 3.8 soon? I am aware this *just* came
out, so no pressure! :) Just trying to organise our work here...
I don't think I know whether this package is maintained in Git or
*how* it's maintained exactly: I've always done what were essentially
upstream-less patches to the package, without ever importing a new
upstream tarball..
Either way, I'd be happy to help, as before, on the maintenance of
this package. Point me in the right direction! :)
In this case, I need to figure out if I patch the current unstable
version (3.7-3.1), or try to upload a 3.8 (as a NMU?) or what.
Thanks!
--- End Message ---
--- Begin Message ---
Source: needrestart
Source-Version: 3.8-0.1
Done: Antoine Beaupré <[email protected]>
We believe that the bug you reported is fixed in the latest version of
needrestart, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Antoine Beaupré <[email protected]> (supplier of updated needrestart package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 09 Dec 2024 14:28:40 -0500
Source: needrestart
Architecture: source
Version: 3.8-0.1
Distribution: experimental
Urgency: medium
Maintainer: Patrick Matthäi <[email protected]>
Changed-By: Antoine Beaupré <[email protected]>
Closes: 1087882
Changes:
needrestart (3.8-0.1) experimental; urgency=medium
.
* New upstream release (Closes: #1087882)
* Remove patches merged upstream
- 09-recognize-versioned-ruby-interpreter.diff
- 11-spelling-error.diff
- core-prevent-race-condition-on-proc-PID-exec-evaluat.patch
- interp-chdir-into-empty-directory-to-prevent-python-.patch
- interp-do-not-set-PYTHONPATH-environment-variable-to.patch
- interp-do-not-set-RUBYLIB-environment-variable-to-pr.patch
- interp-drop-usage-of-Module-ScanDeps-to-prevent-LPE.patch
* 08-uninitialized-vars-arm.diff kept, but rerolled, seems like upstream
had a different fix, might be unnecessary
Checksums-Sha1:
7552eddfb6cfaf62968a014453a9536bf084d0fc 1223 needrestart_3.8-0.1.dsc
5ffa2b5617eb96e748b33fadf8e2ecbf9ec22fca 75562 needrestart_3.8.orig.tar.gz
b5886201b5bc440a505f5efdbba1a0766e79ef9f 12624
needrestart_3.8-0.1.debian.tar.xz
24dea4b2a52ef62e08a407629a4b5ebc66df113a 5177
needrestart_3.8-0.1_amd64.buildinfo
Checksums-Sha256:
a3397a9e9702628834f882e856b5f2a405fb9927cb7688c345208f1b87f7cfe6 1223
needrestart_3.8-0.1.dsc
42664e0b1b98fef1e5e849118b9985ac951516c4d5eb24a7da15d058da647c90 75562
needrestart_3.8.orig.tar.gz
e2bc375595dc86772a51c0dbc04178f890953a3c7f20dba61360789d9d4354bd 12624
needrestart_3.8-0.1.debian.tar.xz
bd269dc81294af6f2b52ed14f2b9a5405e01e6f63c0895d8e98d17d03ec5233b 5177
needrestart_3.8-0.1_amd64.buildinfo
Files:
a1c01fbf1d6bd67700393f1c19191c05 1223 admin optional needrestart_3.8-0.1.dsc
3d317af21fd7492a8f5965df9099ff78 75562 admin optional
needrestart_3.8.orig.tar.gz
21d210ec86e6a06c595720487cbea2d7 12624 admin optional
needrestart_3.8-0.1.debian.tar.xz
bffe1d521af6e9b683b76c29566ca86a 5177 admin optional
needrestart_3.8-0.1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iHUEARYIAB0WIQS7ts1MmNdOE1inUqYCKTpvpOU0cwUCZ1dLzgAKCRACKTpvpOU0
c8fXAQDJIO6x6hAB1U7h9eUxk6gDcbwd2fYNh67LaHrNslR6xQEAjqxGmXK3hwrS
vGMpKIYREYMKAmUeVpWJTBC9mrWE0gI=
=eThT
-----END PGP SIGNATURE-----
pgpI9n8OQDqe4.pgp
Description: PGP signature
--- End Message ---