Dear all, because of #796095 <https://bugs.debian.org/796095> I can not upload to security-master as a DM, therefore I ask for sponsering of package dcmtk-3.6.0 in jessie fixing CVE-2015-8979 (#848830). <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848830>
Because the git packaging history doesn't go back to the version to be fixed I've prepared the new upload on mentors: https://mentors.debian.net/package/dcmtk Alternatively, one can download the package with dget using this command: dget -x https://mentors.debian.net/debian/pool/main/d/dcmtk/dcmtk_3.6.0-15+deb8u1.dsc Please prepare a binary upload with source code included (-sa) and upload it to security-master. Also note that the package as is doesn't support parallel builds. Many thanks, Gert On 24.12.2016 09:30, Sébastien Delafond wrote: > as much as I'd have loved to have to review only the actual minimal > patch from upstream[1], it seems after close examination that the > additional stuff here is only about extra tests. Those are not going to > cause any regression at runtime anyway, so you can build with -sa, and > upload to security-master (no source-only). > > Cheers, > > --Seb
signature.asc
Description: OpenPGP digital signature