Package: git-dpm Version: 0.8.4-1 Severity: normal Dear Maintainer,
When ever I call git-dpm update-patches for a new patch, the dep-3 headers on old patches get replaced with inferior non dep-3 stuff. Here is sample part of diff from such an update-patches ---------------------- - Description: Harden libarary against buffer overflow attack against sprintf - calls to sprintf with '%s' in format replaced with snprint calls. - Forwarded: privately - Author: Paul Elliott <pelli...@blackpatchpanel.com> ++From c722a348197dce0c48c23e5ed5438d92d229944a Mon Sep 17 00:00:00 2001 ++From: Paul Elliott <pelli...@blackpatchpanel.com> ++Date: Wed, 21 Aug 2013 02:09:27 -0500 ++Subject: =?UTF-8?q?harden=20library=20against=20buffer=20overflow=20attack?= ++ =?UTF-8?q?s=20on=20sprintf=0Acalls=20to=20sprintf=20with=20'%s'=20in=20fo?= ++ =?UTF-8?q?rmat=20string=20replaced=20with=20snprintf?= ---------------------- Notice that the lines deleted were dep-3, because I hand edited it to be dep-3. When the new patch installed, this dep-3 was removed and replaced with unreadable stuff that is not dep-3! dep-3 patch headers are highly recommended but not required by debian. http://dep.debian.net/deps/dep3/ -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 3.10-1-686-pae (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages git-dpm depends on: ii git 1:1.8.4~rc2-1 git-dpm recommends no packages. git-dpm suggests no packages. -- no debconf information -- Paul Elliott 1(512)837-1096 pelli...@blackpatchpanel.com PMB 181, 11900 Metric Blvd Suite J http://www.free.blackpatchpanel.com/pme/ Austin TX 78758-3117 --- "Encryption works. Properly implemented strong crypto systems are one of the few things that you can rely on. Unfortunately, endpoint security is so terrifically weak that NSA can frequently find ways around it." Edward Snowden
signature.asc
Description: Digital signature