5/15/2023 0 Comments Geany windows downloadAfter long discussions we decided to deprecate LTS So things started to rot in squeeze and most packages didn't Wanted to support oldoldstable-backports (squeeze) for the lifetime Unfortunately it didn't worked, most maintainers didn't We started supporting backports as long as there is LTS support as anĮxperiment. \o/Īs usual with a new release we will change a few things for With the release of stretch we are pleased to open the doorsįor stretch-backports and jessie-backports-sloppy. This would allow a remote attacker to causeĪ denial-of-service via application crash.įor the jessie-backports distribution the problems have been fixed in Sensitive information like the user's proxy password. This would allow a remote attacker to cause aĭenial-of-service via application crash, or potentially leak This would allow a remoteĪttacker to cause a denial-of-service via application crash.Ĭlients connecting to an HTTP proxy with NTLMv2Īuthentication. Guido Vranken discovered that openvpn did not properly handle Remote attacker to cause a denial-of-service via application It was discovered that openvpn did not properly handle the Making the autobuilding possible and the ftp masters for creating theĪlex and Rhonda - ftpmastersīernhard Schmidt uploaded new packages for openvpn which fixed the Track and update them on a regular basis, but also the buildd team Includes up front the backporters themself who do upload the packages, Thanks have to go out to all people making backports possible, and that ![]() ![]() Those 1624 source packages took 2821 uploadsįrom 252 uploaders to become reality. We will send out a seperate announcementĪfter the switch happened - and of course update the documentation Statisticsįor packages backported from buster, so far we have 1624 different We plan to switch the security-announce mailinglist to keyring based authentication, which means thatĮvery DD and DM is able to publish its own BSA advisories. With the - official - security support for oldstable BSA Security Advisories Support for oldstable (stretch) around one year after the release of buster. Please keep in mind that backports doesn't follow LTS. What to upload whereĪs a reminder, uploads to a release-backports pocket are to be takenįrom release 1, uploads to a release-backports-sloppy pocket are to be Now that buster was released we are pleased to announce the availability ofīuster-backports and stretch-backports-sloppy. If you have something to contribute for our webseite, feel free toĬreate an issue or (even better) create a merge request against They are not yet onboarded, but that will I am happy to announce that Thorsten Glaser (tg) and Micha Lenk (micha) will join The contribution document also shows how to reserve a BSA byĭoing a merge request to the website. Therefore decided to change the mechanism security announcements work.Įvery Debian contributor (DM/DD) can now send a signed mail to theĭebian-backports-announce mailinglist. security uploadsĪnnouncing security updates didn't worked well in the past. Please do not uploadĪnything to oldstable backports. Oldstable backports was discontinued some time ago, but we neverĪnnounced that offically. Testing )) stretch-backports discontinued Of those distributions (yes, that means youĬan't upload packages to bullseye-backports now that are not in
0 Comments
Leave a Reply. |