[tryton-debian] Security fix for safe_eval in Tryton server
Mathias Behrle
mathiasb at m9s.biz
Tue Sep 30 15:43:07 UTC 2014
* Raphael Hertzog: " Re: Security fix for safe_eval in Tryton server" (Tue, 30
Sep 2014 14:35:52 +0200):
> On Tue, 30 Sep 2014, Mathias Behrle wrote:
> > Just uploaded tryton-server_3.2.3-1 to unstable. The news were published on
> > the project page [1].
>
> BTW, what's the status for squeeze? The version there is even older but
> as we officially support LTS, it would be nice if you could provide me an
> update for that version too (in case it also applies).
As written in my original mail I didn't plan an upload for oldstable.
First because I really don't expect any user to run Tryton 1.6 any more. Second
it would be a stripped down version of the patches (only the one for safe_eval),
because ast is new in Python 2.6 (and squeeze has 2.5).
If you estimate nevertheless, that the package should be done, I will provide
it.
Cheers,
Mathias
--
Mathias Behrle
PGP/GnuPG key availabable from any keyserver, ID: 0x8405BBF6
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/tryton-debian/attachments/20140930/ddd0aa54/attachment.sig>
More information about the tryton-debian
mailing list