Bug#700545: [drupal7] Latest security patches don't fix security warning within Drupal7 (update.module)

2013-02-23 Thread Luigi Gangitano 
Hi Gunnar,

7.14-2 has just been uploaded, acknowledging your NMUs and adding the latest 
security fix.

Thanks again for your help. :-)

Please let me know if you are interested in co-maintainership of drupal 
packages.

Regards,

L

Il giorno 14/feb/2013, alle ore 17:30, Gunnar Wolf gw...@gwolf.org ha scritto:

 Luigi Gangitano dijo [Thu, Feb 14, 2013 at 04:51:04PM +0100]:
 
 I'm sorry for being a little out-of-service lately. I wish to
 apologize, but at the same time confirm that I'm always following
 and keeping track of all the issues. Regarding this specific issue,
 I'm in favor of removing the misleading warning from the druapl7
 package that is going to be shipped with wheezy.
 
 Please Gunnar let me know if you want me to package an -2 version
 that acknowledges all the NMUs and fixes the warning and how you
 prefer it to be uploaded.
 
 Well, to be honest, modulo my dislike for PHP, I was about to suggest
 you I could become a comaintainer... But I have a spike of work that
 is unlikely to leave me much Debian time for this semester, so I
 didn't. 
 
 If you can do the -2 version, I'd be happiest. If you cannot, I'll
 prepare a 7.14-1.4 fixing this issue. You tell me! Oh, and prompted by
 some users, I have done some uploads to backports.debian.org, so once
 that's done (be it a NMU or done by you), I'll also push it there.
 
 For the record, I have *not* patched those serious bugs in Drupal6, as
 I'd have to dig through more sub-versions to pick out the proper
 patches. If you can take a look at it, I think it is even more
 prioritary!
 

--
Luigi Gangitano -- lu...@debian.org -- gangit...@lugroma3.org
GPG: 1024D/924C0C26: 12F8 9C03 89D3 DB4A 9972  C24A F19B A618 924C 0C26
GPG: 4096R/2BA97CED: 8D48 5A35 FF1E 6EB7 90E5  0F6D 0284 F20C 2BA9 7CED


--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#700545: [drupal7] Latest security patches don't fix security warning within Drupal7 (update.module)

2013-02-23 Thread Ingo Jürgensmann 
Am 23.02.2013 um 16:37 schrieb Luigi Gangitano lu...@debian.org:

 7.14-2 has just been uploaded, acknowledging your NMUs and adding the latest 
 security fix.


Thanks to both of you for dealing with and finally fixing this issue! :-) 

-- 
Ciao...//  Fon: 0381-2744150
  Ingo   \X/   http://blog.windfluechter.net


gpg pubkey:  http://www.juergensmann.de/ij_public_key.asc


--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#700545: [drupal7] Latest security patches don't fix security warning within Drupal7 (update.module)

2013-02-14 Thread Gunnar Wolf 
Ingo Juergensmann dijo [Thu, Feb 14, 2013 at 08:15:01AM +0100]:
 the last Debian security updates like #696342 and #698334 fixed the
 reported issues by applying the appropriate patches, but
 unfortunately they missed the patch that turns off the prominent
 warning to the end user running his/her Drupal installation. For
 example http://${site}/admin/reports/updates reports something like
 that with installed drupal7_7.14-1.3_all.deb:

Hi Ingo,

I agree with you, but didn't want to meddle anymore in drupal7 than
what was absolutely needed.  I'd prefer to have Luigi's word on this
before doing so. However, Luigi has not been very active lately (that
I an tell), so... Luigi, please comment!


-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#700545: [drupal7] Latest security patches don't fix security warning within Drupal7 (update.module)

2013-02-14 Thread Luigi Gangitano 
Hi Gunnar, Hi Ingo,

Il giorno 14/feb/2013, alle ore 15:11, Gunnar Wolf gw...@gwolf.org ha scritto:

 Ingo Juergensmann dijo [Thu, Feb 14, 2013 at 08:15:01AM +0100]:
 the last Debian security updates like #696342 and #698334 fixed the
 reported issues by applying the appropriate patches, but
 unfortunately they missed the patch that turns off the prominent
 warning to the end user running his/her Drupal installation. For
 example http://${site}/admin/reports/updates reports something like
 that with installed drupal7_7.14-1.3_all.deb:
 
 I agree with you, but didn't want to meddle anymore in drupal7 than
 what was absolutely needed.  I'd prefer to have Luigi's word on this
 before doing so. However, Luigi has not been very active lately (that
 I an tell), so... Luigi, please comment!


I'm sorry for being a little out-of-service lately. I wish to apologize, but at 
the same time confirm that I'm always following and keeping track of all the 
issues. Regarding this specific issue, I'm in favor of removing the misleading 
warning from the druapl7 package that is going to be shipped with wheezy.

Please Gunnar let me know if you want me to package an -2 version that 
acknowledges all the NMUs and fixes the warning and how you prefer it to be 
uploaded.

Regards,

L

--
Luigi Gangitano -- lu...@debian.org -- gangit...@lugroma3.org
GPG: 1024D/924C0C26: 12F8 9C03 89D3 DB4A 9972  C24A F19B A618 924C 0C26
GPG: 4096R/2BA97CED: 8D48 5A35 FF1E 6EB7 90E5  0F6D 0284 F20C 2BA9 7CED


--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#700545: [drupal7] Latest security patches don't fix security warning within Drupal7 (update.module)

2013-02-14 Thread Gunnar Wolf 
Luigi Gangitano dijo [Thu, Feb 14, 2013 at 04:51:04PM +0100]:
 
 I'm sorry for being a little out-of-service lately. I wish to
 apologize, but at the same time confirm that I'm always following
 and keeping track of all the issues. Regarding this specific issue,
 I'm in favor of removing the misleading warning from the druapl7
 package that is going to be shipped with wheezy.
 
 Please Gunnar let me know if you want me to package an -2 version
 that acknowledges all the NMUs and fixes the warning and how you
 prefer it to be uploaded.

Well, to be honest, modulo my dislike for PHP, I was about to suggest
you I could become a comaintainer... But I have a spike of work that
is unlikely to leave me much Debian time for this semester, so I
didn't. 

If you can do the -2 version, I'd be happiest. If you cannot, I'll
prepare a 7.14-1.4 fixing this issue. You tell me! Oh, and prompted by
some users, I have done some uploads to backports.debian.org, so once
that's done (be it a NMU or done by you), I'll also push it there.

For the record, I have *not* patched those serious bugs in Drupal6, as
I'd have to dig through more sub-versions to pick out the proper
patches. If you can take a look at it, I think it is even more
prioritary!


-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org