Fwd: CVE-2023-25690: Apache2 mod_proxy for old(old)stable?

2023-04-20 Thread Philipp Hahn
Hello fellow DDs, I was redirected here by Moritz: Weitergeleitete Nachricht Betreff: CVE-2023-25690: Apache2 mod_proxy for old(old)stable? Datum: Thu, 20 Apr 2023 12:05:19 +0200 Von: Philipp Hahn Organisation: Univention GmbH An: t...@security.debian.org, Raphael Hertzog

Re: Incomplete: intel-microcode (3.20230214.1~deb10u1) buster-security

2023-04-05 Thread Philipp Hahn
Hello Tobias, Am 05.04.23 um 14:27 schrieb Philipp Hahn: According to <https://tracker.debian.org/media/packages/f/firmware-nonfree/changelog-20190114really20220913-0deb10u1> you uploaded the package to "buster-security", but only the source package made it into the archive; the

Incomplete: firmware-nonfree (20190114+really20220913-0+deb10u1) buster-security

2023-04-05 Thread Philipp Hahn
allow-listed. Can you please have a look? Philipp Hahn--- Begin Message --- Hello, The microcode packages have been whitelisted for at least a decade, however non-free auto-building is spotty. Intel-microcode faces the same issue. I don't really recall if contrib is any better. This has bitten m

Re: [DLA-3007-1] imagemagick security update incomplete

2022-08-30 Thread Philipp Hahn
Hello, Am 01.06.22 um 16:29 schrieb Philipp Hahn: Am 16.05.22 um 15:55 schrieb Anton Gladky: Andreas, please analyze, whether this failure is related to your changes. If not - we can try to rebuild. Am Mo., 16. Mai 2022 um 13:26 Uhr schrieb Emilio Pozuelo Monfort : On 16/05/2022 11:04

Re: [DLA-3007-1] imagemagick security update incomplete

2022-06-01 Thread Philipp Hahn
, Philipp Hahn wrote: The upload of https://packages.debian.org/source/stretch/imagemagick (8:6.9.7.4+dfsg-11+deb9u14) seems to be incomplete: It only includes the architecture-independant files and files for arm64,armel,armhf, but *not* i386,amd64; see http://security.debian.org/debian-security

[DLA-3007-1] imagemagick security update incomplete

2022-05-16 Thread Philipp Hahn
/pool/main/i/imagemagick/ for yourself. Is this known? According to https://lists.debian.org/debian-lts-announce/2022/05/msg00018.html you prepared te DLA. Philipp -- Philipp Hahn Open Source Software Engineer Univention GmbH be open. Mary-Somerville-Str. 1 D-28359 Bremen  +49-421-22232-57

Re: DLA-2743-1 amd64-microcode incomplete

2021-09-12 Thread Philipp Hahn
Hello Utkarsh, Am 31.08.21 um 16:41 schrieb Utkarsh Gupta: This is on my radar for today/tomorrow. I'll have this fixed; shouldn't warrant a separate upload though. Any news on this? Looking at

Re: DLA-2743-1 amd64-microcode incomplete

2021-08-31 Thread Philipp Hahn
Hello Philipp Kern, Am 30.08.21 um 11:13 schrieb Philipp Kern: On 23.08.21 10:47, Philipp Hahn wrote: amd64-micocode for <https://www.debian.org/lts/security/2021/dla-2743> looks incomplete: The source page <https://packages.debian.org/search?keywords=amd64-microcode=sourcename

DLA-2743-1 amd64-microcode incomplete

2021-08-23 Thread Philipp Hahn
nce/pkgs.html#non-free-buildd> talks about XS-Autobuild: yes cc: non-free@builddd Otherwise happy DebConf times. Philipp Hahn - also a DD. -- Philipp Hahn Open Source Software Engineer Univention GmbH be open. Mary-Somerville-Str. 1 D-28359 Bremen  +49-421-22232-57  +49-421