[Pkg-samba-maint] HEADS UP: CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation
Mathieu Parent
math.parent at gmail.com
Fri Jul 14 13:20:24 UTC 2017
2017-07-14 14:50 GMT+02:00 Yves-Alexis Perez <corsac at debian.org>:
> On Fri, 2017-07-14 at 14:32 +0200, Yves-Alexis Perez wrote:
>> On Fri, 2017-07-14 at 13:44 +0200, Yves-Alexis Perez wrote:
>> > On Fri, 2017-07-14 at 13:41 +0200, Mathieu Parent wrote:
>> > > (From phone)
>> > >
>> > > I've uploaded to sécurité à un embargo es including thé source. What's
>> > > missing ?
>> >
>> > This mail isn't really readable, but I can see the upload waiting in the
>> > queue
>> > on security-master so I'll take a look and release them as once.
>> >
>> > Thanks for your work, I'll ask if there's anything missing.
>> >
>>
>> I just released the DSA, thanks all for your work on this.
>>
> I take that back. It seems that the jessie-security upload was built in a
> stretch chroot or something, it depends on libreadline7 instead of
> libreadline6.
Oh. My bad. I'm currently rebuilding a new 2:4.2.14+dfsg-0+deb8u8 with
"gbp buildpackage --git-dist=jessie". I won't upload it unless you
tell me to do so.
The stretch package was also built from sid,
> Mathieu, next time could you please build uploads using sbuild or pbuilder and
> the chroot relevant to the distribution you're targeting?
>
> We'll have to rebuild cleanly but I'm unsure if we can do a binNMU or if we
> need another manual upload, I'll keep you posted.
OK. I'm so so so sorry. I made this in a hurry without checking
enough: I've built those packages twice, and the first was ok, while
the second (after adding the Closes:#) was not.
> Regards,
> --
> Yves-Alexis
--
Mathieu Parent
PS: diff:
commit 177abcdc6a31471022b340a4dfb03f2b256523f2 (HEAD -> jessie)
Author: Mathieu Parent <math.parent at gmail.com>
Date: Fri Jul 14 15:04:02 2017 +0200
Release 2:4.2.14+dfsg-0+deb8u8
diff --git a/debian/changelog b/debian/changelog
index 973bcda8b1f..b015f064e0f 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+samba (2:4.2.14+dfsg-0+deb8u8) jessie-security; urgency=high
+
+ * Rebuild on jessie
+
+ -- Mathieu Parent <sathieu at debian.org> Fri, 14 Jul 2017 15:03:29 +0200
+
samba (2:4.2.14+dfsg-0+deb8u7) jessie-security; urgency=high
* This is a security release in order to address the following defect:
More information about the Pkg-samba-maint
mailing list