Bug#1123738: Errands skipping TLS checks: okay to fix via stable-updates no-DSA?
John Scott
jscott at posteo.net
Sun Jan 11 18:38:24 GMT 2026
I wrote last week:
> Can I have your affirmation that it's okay to proceed going the trixie-updates/Release Team route to upload a fix as if it were a non-security bug?
Per https://www.debian.org/doc/manuals/developers-reference/pkgs.en.html#xpointer(//*%5B@id=%22uploading-the-fixed-package%22%5D/p%5B2%5D) I need the Security Team's consent to go ahead. There is no CVE or identifier for this issue. (If you think there should be, perhaps to help other distros identify they should pick up the fix, I ask that you address that with the Errands upstream project.) I would appreciate your response.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 411 bytes
Desc: This is a digitally signed message part
URL: <http://alioth-lists.debian.net/pipermail/pkg-gnome-maintainers/attachments/20260111/fe486886/attachment-0001.sig>
More information about the pkg-gnome-maintainers
mailing list