[Python-modules-team] Bug#934026: python-django: CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235
Chris Lamb
lamby at debian.org
Fri Aug 9 09:18:15 BST 2019
Hi Salvatore,
> Although I'm late for the game ;-). You can use both
> 1:1.11.23-1~deb10u1 or 1:1.11.23-0+deb10u1. It is a matter of what you
> want the oxpress.
>
> 1:1.11.23-1~deb10u1 ... is mainly are rebuild of 1:1.11.23-1 with
> maybe some additional changes. Examples for this one are e.g. the
> opnejdk packages.
>
> 1:1.11.23-0+deb10u1 means ... I import 1:1.11.23 on top of the
> existing packaging but released for a lower suite than sid. This in
> the theoretiical case there would have been a 1:1.11.23-1 in the upper
> suite it is 1:1.11.23-0+deb10u1 < 1:1.11.23-1. If you want examples
> for this one for instance ghostscript, mariadb, ...
Thank you for the explicit explanation. I had intuited and inferred
this from the previous conversation so I went with 1:1.11.23-1~deb10u1
for my most-recent [rebuild] version of the debdiff.
(… although it's not a "re"-build of anything; 1.11.23 won't be in any
other suite… :p)
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` lamby at debian.org 🍥 chris-lamb.co.uk
`-
More information about the Python-modules-team
mailing list