<html><head></head><body><div>On Tue, 2021-11-30 at 09:39 +0000, Dominic Hargreaves wrote:</div><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><div>On Tue, Nov 30, 2021 at 09:31:51AM +0000, Dominic Hargreaves wrote:<br></div></blockquote><div><br></div><div>[Odd, I seem to have missed this email]</div><div><br></div><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><div>On Tue, Nov 23, 2021 at 10:36:15PM +1300, Andrew Ruthven wrote:<br></div><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><div>1) upload libmodule-install-rtx-perl that is in experimental to sid</div><div>2) upload 5.0.2 packages<br></div><div><br></div><div>Once 2 & 3 are in sid:<br></div><div>3) upload all the various RT5 extensions<br></div></blockquote><div><br></div><div>Sounds good, though I believe that the extension packages can be<br></div><div>uploaded to sid now (see the TODO in <br></div><div><br></div><div><a href="https://docs.google.com/spreadsheets/d/17WvGt5oedk2qsekJbPl-CLyhrs8FIaFDobinMMMP5p8/edit#gid=0">https://docs.google.com/spreadsheets/d/17WvGt5oedk2qsekJbPl-CLyhrs8FIaFDobinMMMP5p8/edit#gid=0</a></div></blockquote></blockquote><div><br></div><div>Some can, but some also depend on v 0.42 which is in experimental.</div><div><br></div><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><div>Do we want to upload RT 4.4.5 to sid?<br></div></blockquote><div><br></div><div>Interesting question. We want to remove RT4 from testing before the<br></div><div>next release. But I imagine there will be users who will benefit from<br></div><div>a few more uploads of RT4 to unstable in the meantime, so I'd say yes.<br></div><div>Do you have cycles/interest in doing that? If not I can probably step<br></div><div>in.</div></blockquote></blockquote><div><br></div><div>Yeah, I think there'll still be a few folks sitting in RT4 for a while yet. I already have RT 4.4.5 sitting in our git repo, should be easy enough to upload it, so I can take care of that.</div><div><br></div><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><blockquote type="cite" style="margin:0 0 0 .8ex; border-left:2px #729fcf solid;padding-left:1ex"><div>From <a href="https://docs.bestpractical.com/release-notes/rt/4.4.5">https://docs.bestpractical.com/release-notes/rt/4.4.5</a> I see<br></div><div>that there's also a security vulnerability (username enumeration through<br></div><div>timing side-channel attack) fixed in 4.4.5. I'll file a separate bug about<br></div><div>that now.<br></div></blockquote><div><br></div><div>Correction, that's already done:<br></div><div><br></div><div><a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=995167">https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=995167</a><br></div></blockquote><div><br></div><div>Ack. I've just added a line to d/changelog that'll close that bug.</div><div><br></div><div><span><pre>-- <br></pre><pre>Andrew Ruthven, Wellington, New Zealand
andrew@etc.gen.nz |
Catalyst Cloud: | This space intentionally left blank
https://catalystcloud.nz |
</pre></span></div></body></html>