Author: jmm Date: 2013-12-29 13:58:50 +0000 (Sun, 29 Dec 2013) New Revision: 24950
Modified: hardening/subgoal-dsa.txt Log: restore list of packages which have been ported to dpkg-buildflags for completeness / grepability add new source packages for which DSAs have been released in 2012/2013 (WIP) Modified: hardening/subgoal-dsa.txt =================================================================== --- hardening/subgoal-dsa.txt 2013-12-29 11:42:25 UTC (rev 24949) +++ hardening/subgoal-dsa.txt 2013-12-29 13:58:50 UTC (rev 24950) @@ -1,5 +1,5 @@ Hardening subgoal for Wheezy: -All packages, which had a DSA since 2006. +All packages, which had a DSA since 2006 (up to the end of 2013) Instructions: - After checking a package, add it to the "Candidates:" or "Non-candidates:" list @@ -10,7 +10,7 @@ future) -Bugs: +Unfixed packages / requring further checks: barnowl (653506) eglibc (657528) heartbeat (657840) @@ -25,15 +25,59 @@ wzdftpd (655141) pmount (664501) eggdrop (668091) +openjdk-7 (660021) +foomatic-filters +putty +polarssl +xen +virtualbox +pidgin-otr +libyaml-libyaml-perl +openjpeg +cvs +dropbear +mesa +libxt +libxcursor +libxext +libxi +libxrandr +libxp +libxcb +libfs +libxres +libxtst +libxfixes +libxvmc +libxv +libxrender +xserver-xorg-video-openchrome +libdmx +libxxf86dga +libxinerama +libxxf86v +libx11 +systemd +nas +pixman +openttd +ecryptfs-utils +bip +mumble +notmuch +libproxy +libssh +cfingerd +cups-pk-helper + debhelper-based packages needing bugs: wxwidgets2.8 libapache2-mod-authnz-external libtool libvorbis -ltsp mapserver spamass-milter subversion @@ -201,7 +245,6 @@ imagemagick (8:6.7.4.0-2) (657833) loop-aes-utils (2.16.2-3) (656009) vsftpd (2.3.5-3) (655103) -openjdk-7 (7~u3-2.1-2) (660021) vlc (2.0.0-5) (658030) libxfont (1:1.4.5-1) (654154) libav (4:0.8-2) (658929) @@ -355,9 +398,24 @@ apr-util openafs (659663) kvirc (669189) +l2tpns +gnumeric +kvirc +openafs +wireshark +chromium-browser +tiff +gnupg2 +php5 +postgresql-9.1 +systemd +apr +apr-util +ltsp +super (3.30.0-4) +devscripts - Packages, which use hardened build flags manually, but not yet dpkg-buildflags: sendmail @@ -394,3 +452,8 @@ + + + + + _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits