Your message dated Sat, 19 Mar 2016 18:35:11 -0300
with message-id <20160319213511.ga14...@debian.org>
and subject line Re: Bug#809359: redmine is outdated in Debian
has caused the Debian Bug report #809359,
regarding redmine is outdated in Debian
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
809359: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809359
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: redmine
Severity: grave
It seems Redmine Debian package is seriously outdated in Debian. It
shouldn't be shipped as such into Stretch, in my opinion, as it does
not seem to follow any upstream stable branch (2.6, 3.0, or 3.1).
I am also puzzled as to why this was shipped in Jessie in the first
place, let alone shipped in a proposed-stable-update...
There are several security issues still affecting all debian releases,
including squeeze-lts, wheezy, jessie and sid.
https://security-tracker.debian.org/tracker/source-package/redmine
redmine was removed from stretch, but it seems to me that an official
release should be shipped in Debian stable releases. And followed as
much as possible!
-- System Information:
Debian Release: 8.2
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'proposed-updates'), (500,
'stable'), (500, 'oldstable'), (1, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.2.0-0.bpo.1-amd64 (SMP w/2 CPU cores)
Locale: LANG=fr_CA.UTF-8, LC_CTYPE=fr_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
--- End Message ---
--- Begin Message ---
On Tue, Dec 29, 2015 at 02:50:32PM -0500, Antoine Beaupré wrote:
> Source: redmine
> Severity: grave
>
> It seems Redmine Debian package is seriously outdated in Debian.
>
> It shouldn't be shipped as such into Stretch, in my opinion, as it
> does not seem to follow any upstream stable branch (2.6, 3.0, or 3.1).
>
> I am also puzzled as to why this was shipped in Jessie in the first
> place, let alone shipped in a proposed-stable-update...
The reason why Jessie was shipped with something that is not a final
redmine upstream release in Jessie is documented in #783711.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783711
In my experience the version shipped in Jessie is close enough to what
was the Redmine 3.0 release, but due to timing issues it was not
possible to have the final version. It was that, or not having redmine
at all.
> There are several security issues still affecting all debian releases,
> including squeeze-lts, wheezy, jessie and sid.
>
> https://security-tracker.debian.org/tracker/source-package/redmine
>
> redmine was removed from stretch, but it seems to me that an official
> release should be shipped in Debian stable releases. And followed as
> much as possible!
sid is currently almost up to date, missing only a minor update (3.2.0
vs 3.2.1 upstream). stretch is not in sync because of this very bug
report, which in my opinion has an artifically inflated severity.
--
Antonio Terceiro <terce...@debian.org>
signature.asc
Description: PGP signature
--- End Message ---
