[Pkg-samba-maint] HEADS UP: CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation

Yves-Alexis Perez corsac at debian.org
Fri Jul 14 12:50:11 UTC 2017

On Fri, 2017-07-14 at 14:32 +0200, Yves-Alexis Perez wrote:
> On Fri, 2017-07-14 at 13:44 +0200, Yves-Alexis Perez wrote:
> > On Fri, 2017-07-14 at 13:41 +0200, Mathieu Parent wrote:
> > > (From phone)
> > > 
> > > I've uploaded to sécurité à un embargo es including thé source. What's
> > > missing ?
> > 
> > This mail isn't really readable, but I can see the upload waiting in the
> > queue
> > on security-master so I'll take a look and release them as once.
> > 
> > Thanks for your work, I'll ask if there's anything missing.
> > 
> I just released the DSA, thanks all for your work on this.
I take that back. It seems that the jessie-security upload was built in a
stretch chroot or something, it depends on libreadline7 instead of

Mathieu, next time could you please build uploads using sbuild or pbuilder and
the chroot relevant to the distribution you're targeting?

We'll have to rebuild cleanly but I'm unsure if we can do a binNMU or if we
need another manual upload, I'll keep you posted.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-samba-maint/attachments/20170714/c00c5581/attachment-0001.sig>

More information about the Pkg-samba-maint mailing list