Bug#584621: blender: possible symlink attack
Sebastian Ramacher
sramacher at debian.org
Wed Aug 6 12:17:48 UTC 2014
Hi Jonathan
On 2014-08-06 11:15:03, Jonathan Wiltshire wrote:
> Package: blender
>
> Dear maintainer,
>
> Recently you fixed one or more security problems and as a result you closed
> this bug. These problems were not serious enough for a Debian Security
> Advisory, so they are now on my radar for fixing in the following suites
> through point releases:
>
> squeeze (6.0.8) - use target "oldstable"
>
> Please prepare a minimal-changes upload targetting each of these suites,
> and submit a debdiff to the Release Team [0] for consideration. They will
> offer additional guidance or instruct you to upload your package.
>
> I will happily assist you at any stage if the patch is straightforward and
> you need help. Please keep me in CC at all times so I can
> track [1] the progress of this request.
>
> For details of this process and the rationale, please see the original
> announcement [2] and my blog post [3].
Out of curiosity: is this mail template still up-to-date? squeeze is now EOL.
Shouldn't the mail point people to https://wiki.debian.org/LTS and instructions
to provided fixes via squeeze-lts?
Cheers
--
Sebastian Ramacher
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20140806/e6f97618/attachment.sig>
More information about the pkg-multimedia-maintainers
mailing list