On Mon, Jul 09, 2007 at 02:21:15PM -0700, Steve Langasek wrote: > On Mon, Jul 09, 2007 at 09:38:53PM +0100, Steve Kemp wrote: > > On Mon Jul 09, 2007 at 12:43:57 -0700, Steve Langasek wrote:
> > > I've uploaded a freetype 2.1.7-7 package to > > > <http://people.debian.org/~vorlon/freetype/>, signed and built for sarge. > > Thanks. > > > Let me know if you would like me to upload this to security.d.o (I promise > > > I'll even use the embargoed queue this time, so you don't have to go > > > hunting > > > for the upload ;). > > That'd be grand, thanks. > > > Unfortunately, going back through my mail I see that there's another open > > > security report against freetype, bug #426771. I have not investigated > > > this > > > at all to confirm which versions of freetype are affected. Please advise > > > if > > > you would like me to look into this for possible inclusion in 2.1.7-7. > > :( > > I think that for the moment it would be best to push this out so that > > we're all on a level playing field. (Which reminds me some of the > > slower buildds have started catching up too..) > Ok, uploading. <sigh> -- please kick this one out, I just noticed I built it with stable-security as the target. Let me know if you would like me to re-roll -7 or prepare a -8 instead. Also, I've looked into 426771 now and have confirmed it applies to 2.2.1; I assume it also applies to 2.1.7. So I can include that in -8 if that's easier. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]