Bug#616067: openjdk-6: wrong version in `changelog.Debian.gz`

2011-10-19 Thread Paul Menzel 
Dear Matthias,


Am Mittwoch, den 19.10.2011, 21:37 +0200 schrieb Matthias Klose:
 There is no changelog entry with this version in unstable

… anymore? Did you mean that?

Did `changelog.Debian.gz` change somehow? Otherwise I cannot explain how
this could have happened. I could find the changelog entry but only for
Squeeze [1] as it seems.


Thanks,

Paul


[1] 
http://packages.debian.org/changelogs/pool/main/o/openjdk-6/openjdk-6_6b18-1.8.7-2~squeeze1/changelog#versionversion6b18-1.8.7-1


signature.asc
Description: This is a digitally signed message part

Bug#616067: openjdk-6: wrong version in `changelog.Debian.gz`

2011-10-19 Thread Matthias Klose 
you would have to ask the uploader of this package. this changelog entry was
never in unstable.

On 10/19/2011 11:48 PM, Paul Menzel wrote:
 Dear Matthias,
 
 
 Am Mittwoch, den 19.10.2011, 21:37 +0200 schrieb Matthias Klose:
 There is no changelog entry with this version in unstable
 
 … anymore? Did you mean that?
 
 Did `changelog.Debian.gz` change somehow? Otherwise I cannot explain how 
 this could have happened. I could find the changelog entry but only for 
 Squeeze [1] as it seems.
 
 
 Thanks,
 
 Paul
 
 
 [1]
 http://packages.debian.org/changelogs/pool/main/o/openjdk-6/openjdk-6_6b18-1.8.7-2~squeeze1/changelog#versionversion6b18-1.8.7-1



--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#616067: openjdk-6: wrong version in `changelog.Debian.gz`

2011-03-02 Thread Paul Menzel 
Subject: openjdk-6: wrong version in `changelog.Debian.gz`
Package: openjdk-6
Version: 6b18-1.8.7-1
Severity: minor

Dear Debian folks,


in `changelog.Debian.gz` it says 

openjdk-6 (6b18-1.8.7-1) unstable; urgency=medium

* IcedTea6 1.9.7 release.
  - S6878713, CVE-2010-4469: Hotspot backward jsr heap 
corruption.
  - S6907662, CVE-2010-4465: Swing timer-based security manager 
bypass.
  - S6994263, CVE-2010-4472: Untrusted code allowed to replace
DSIG/C14N implementation.
  - S6981922, CVE-2010-4448: DNS cache poisoning by untrusted 
applets.
  - S6983554, CVE-2010-4450: Launcher incorrect processing of 
empty
library path entries.
  - S6985453, CVE-2010-4471: Java2D font-related system 
property leak.
  - S6927050, CVE-2010-4470: JAXP untrusted component state 
manipulation.
  - CVE-2011-0706: Multiple signers privilege escalation.

* IcedTea6 1.9.6 release.
[…]

but I guess this has to be 1.8.{6,7} each time.

I wanted to submit a patch, but I could not find these lines in the directory 
created by `debcheckout openjdk-6`.


Thanks,

Paul

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: i386 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash


signature.asc
Description: This is a digitally signed message part