Re: Jessie update of qtbase-opensource-src?
El viernes, 28 de diciembre de 2018 18:35:00 -03 Ola Lundqvist escribió: > Hi > > I started to look at excluding the uploaders and just include the > maintainer but it turned out to be problematic. At least to make it a > general thing. I can make a dirty hack but I do not think that would be > very useful since we do not contact you that often. > > The problem is that the uploaders and maintainers are reported the same in > https://packages.qa.debian.org/q/qtbase-opensource-src.rdf > or more generally > https://packages.qa.debian.org/$section/$package.rdf > > Do anyone know why this is so, and whether we have any other source of data > to conclude this? Without actually parsing html content... I can only think on grepping the current output of your scripts. If it contains "lists" or maybe even the typical debian's mailing list string in them, just keep that entry. Thanks for looking into this! -- The box said 'Requires Windows 95 or better'. So I installed Linux. Anonymous Lisandro Damián Nicanor Pérez Meyer http://perezmeyer.com.ar/ http://perezmeyer.blogspot.com/ signature.asc Description: This is a digitally signed message part.
Re: Jessie update of qtbase-opensource-src?
El sábado, 15 de diciembre de 2018 08:48:35 -03 Ola Lundqvist escribió: > Hi > > Thank you for quick response. We will take care of this. Great :-) > I'm using a standardized script for contacting maintainers and it > automatically Cc individual uploaders. Is this a problem and in that case > should we adjust the script for this package maybe? Yes please. And thanks in advance! -- Never attribute to malice that which is adequately explained by stupidity. http://en.wikipedia.org/wiki/Hanlon's_razor Lisandro Damián Nicanor Pérez Meyer http://perezmeyer.com.ar/ http://perezmeyer.blogspot.com/ signature.asc Description: This is a digitally signed message part.
Re: Jessie update of qtbase-opensource-src?
Hi Ola! Please next time use the team's address, there is no need to CC us. El jueves, 13 de diciembre de 2018 17:50:48 -03 Ola Lundqvist escribió: > Dear maintainers, > > The Debian LTS team would like to fix the security issues which are > currently open in the Jessie version of qtbase-opensource-src: > https://security-tracker.debian.org/tracker/CVE-2018-19873 > https://security-tracker.debian.org/tracker/CVE-2018-19870 > > These are not the most urgent things to fix but I think it would be > good to fix it anyway since QT is so common. There are a few other issues > that have been ignored that may be worth fixing at the same time. > > Would you like to take care of this yourself? We don't currently have enough man power to prepare 5.11.3 and we need to fix stable, so I don't think so. [snip] > If you don't want to take care of this update, it's not a problem, we > will do our best with your package. Just let us know whether you would > like to review and/or test the updated package before it gets released. Pretty please go ahead with the LTS fix. Please note that Jessie has Qt 5.3.2, and quite a lot of water has gone under the bridge. The fix might or not be easy. signature.asc Description: This is a digitally signed message part.
