Phil Wyett:
> On Wed, 2017-09-13 at 15:32 +0000, Donncha O'Cearbhaill wrote:
>> Phil Wyett:
>>>>
>>>> Hi,
>>>>
>>>> Please note that the debdiff I provided was essentially a raw backport for
>>>> testing and I thought i
CVE-2017-14604 has been issued for this vulnerability.
It looks like I attached the wrong debdiff to my previous email. I have
attached the correct version now.
diff -Nru nautilus-3.22.3/debian/changelog nautilus-3.22.3/debian/changelog
--- nautilus-3.22.3/debian/changelog2017-03-09 02:39:58.0 +0100
+++ nautilus-3.22.3/debian/changelog2
Phil Wyett:
> Please note that the debdiff I provided was essentially a raw backport for
> testing and I thought it may have issues. It was never meant as a 'here it is,
> all done' patch ready for submission as a stable update.
>
> I am a little busy at the moment, but if I can help here, I will.
Phil Wyett:
>>
>> Hi,
>>
>> Please note that the debdiff I provided was essentially a raw backport for
>> testing and I thought it may have issues. It was never meant as a 'here it
>> is,
>> all done' patch ready for submission as a stable update.
>>
>> I am a little busy at the moment, but if I c
Jeremy Bicha:
>
> It's not just a UI change but a translatable string change. The new
> dialog that users will have to use to mark .desktop's as trusted will
> be untranslated.
>
> Therefore, if you want this feature, you will need to use Nautilus >=
> 3.24 which means you will need to upgrade to
Is there anything that I can do to help get this backport patch
deployed? This issue can be exploited in the wild and I think it should
be fixed as soon as possible.
I am still waiting for a response for my CVE request.
coordinate their fixes.
Upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=777991
intrigeri:
> Control: tag -1 + security
>
> Donncha O'Cearbhaill:
>> Thank you Phil for providing a backport patch. What is the next step
>> needed to get this fix released as a backp
intrigeri:
> Control: tag -1 + security
>
> Donncha O'Cearbhaill:
>> Thank you Phil for providing a backport patch. What is the next step
>> needed to get this fix released as a backport? The .desktop security
>> issue is widely know and can be exploited in the wi
Hi,
Thank you Phil for providing a backport patch. What is the next step
needed to get this fix released as a backport? The .desktop security
issue is widely know and can be exploited in the wild [1]. IMO this
fixed should be made available as soon as possible.
Regards,
Donncha
[1] https://githu
On Fri, 29 Jul 2016 07:17:00 + Peter Palfrader
wrote:
> Package: onionbalance
> Version: 0.1.4-1~bpo8+1
> Severity: normal
>
> Hi,
>
> I had this config:
>
> | - # ftp.debian.org via vwakviie2ienjx6t.onion
> |key: private_keys/ftp.debian.org.key
> |instances:
> | - address: kp
elect between
+/usr/bin/tor-prompt for the Python 2 and Python 3 packages
+(Closes: #812459).
+
+ -- Donncha O'Cearbhaill Sat, 05 Mar 2016 23:24:41 +0100
+
python-stem (1.4.1b-2) unstable; urgency=medium
* Rollback #767555 since it kinda loses functionality as it is.
diff -Nru p
e/schedule
Alternatively, one can download the package with dget using this command:
dget -x
http://mentors.debian.net/debian/pool/main/s/schedule/schedule_0.3.2-1.dsc
Regards,
Donncha O'Cearbhaill
signature.asc
Description: OpenPGP digital signature
Package: wnpp
Severity: wishlist
Owner: Donncha O'Cearbhaill
* Package name: python-schedule
Version : 0.3.2
Upstream Author : Daniel Bader
* URL : https://github.com/dbader/schedule
* License : Expat
Programming Lang: Python
Description
Package: wnpp
Severity: wishlist
Owner: Donncha O'Cearbhaill
* Package name: onionbalance
Version : 0.1.1
Upstream Author : Donncha O'Cearbhaill
* URL : https://github.com/DonnchaC/onionbalance/
* License : GPL-3+
Programming Lang: Python
D
15 matches
Mail list logo
