[Pkg-samba-maint] (forw) [Samba-pkg-sec] smbclient format string vulnerability

Christian Perrier bubulle at debian.org
Wed Jun 24 16:55:18 UTC 2009

CC'ing the packaging team address as the issue is now public...

Quoting Thijs Kinkhorst (thijs at debian.org):

> Unfortunately it was rejected due to the upload not including .orig.tar.gz
> and the security archive not having that orig.tar.gz. It needs to be built
> with the '-sa' flag.

Crap....forgot about that.

> The upload otherwise looks fine. If you do not have the time to rebuild
> and upload it today I can do so tomorrow at the earliest.

I had no time, no (and I was mostly offline today). So, please do.

I would appreciate if you can use the diff.gz that I uploaded (so that
I don't have to update our SVN) but if you can't (for instance, if you
need to build a -4lenny7), then don't worry, I'll handle things
properly ASAP (which means not next week-end).

Other samba packaging team memebers, if you can catchup with all this
until next Monday, I'll appreciate as I will have very short time
until then.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-samba-maint/attachments/20090624/47e77a70/attachment.pgp>

More information about the Pkg-samba-maint mailing list