[Pkg-salt-team] Next salt upload

Joe Healy joehealy at gmail.com
Tue Oct 22 14:18:49 UTC 2013 

On Tue, Oct 22, 2013 at 04:00:07PM +0200, martin f krafft wrote:
> I am leaving in 30 minutes, but am back in the office tomorrow…

Thank you for letting me know this, I have tested the packages and
they seem to be fine.

Hopefully there is time for you to upload, though I would understand
if you cannot before tomorrow.

I have ended up removing the saltstack theme from the documentation as
it had many files in it with undocumented/unclear copyright/licences
and a number with licences that were not DFSG. This was done by
filtering when importing the upstream tar.gz file with the removed
files/directories documented in gbp.conf.

I've gone through and checked and documented each file that has a
copyright other than with the saltstack community. The change log is
below:

salt (0.17.1+dfsg-1) unstable; urgency=medium

  * [ebd0329] Updated gbp.conf to remove saltstack theme
  * [ba2cb77] Updated debian/watch to deal with dfsg versions
  * [091a74a] Imported Upstream version 0.17.1+dfsg
   * Various security fixes, Closes: 726480
    * Insufficent Argument Validation CVE-2013-4435
    * MITM ssh attack in salt-ssh CVE-2013-4436
    * Insecure Usage of /tmp in salt-ssh CVE-2013-4438
    * YAML Calling Unsafe Loading Routine CVE-2013-4438
    * Failure to Validate Minions Posting Data CVE-2013-4439
  * [47ce833] Removed patches for issues fixed by upstream
  * [fddc7b5] Added patches for doc theme change and minor fixes
  * [b146f77] Build man pages
  * [cd33d3a] Copyright and licence audit, Closes: 725999

 -- Joe Healy <joehealy at gmail.com>  Wed, 23 Oct 2013 00:19:26 +1100

Given all of this, could you please upload the packages into the
debian archive?

The packages are at:

http://jhh.no-ip.biz/incoming/salt_0.17.1+dfsg-1.dsc
http://jhh.no-ip.biz/incoming/salt_0.17.1+dfsg-1_i386.changes

or in the git repo.

I have done all I am aware of to ensure that they will have a smooth
transition through the NEW queue.

Thanks very much,

Joe
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-salt-team/attachments/20131023/8dcefa55/attachment.sig>

More information about the pkg-salt-team mailing list