Hi Tianon, On Mon, Sep 14, 2015 at 05:18:30PM -0700, Tianon Gravi wrote: > Package: release.debian.org > User: release.debian....@packages.debian.org > Usertags: pu > Tags: jessie > Severity: normal > > Hi! > > "src:golang" has recently had a group of non-critical CVEs (#795106); > I've finally got a fix in unstable now, but the security team > requested[1] that I also propose an upload to s-p-u also to update > jessie. > > I've attached the proposed debdiff -- the only functional change is > the addition of the .patch file containing the three backported > upstream commits to fix the CVEs. > > [1]: https://bugs.debian.org/795106#45 > > Thanks for your consideration!
Remark: not spaeking as Release Team member, just "outsider": could you as well include the fix for the issue without CVE, see: https://security-tracker.debian.org/tracker/source-package/golang (it needs to be addressed as well in unstable before though). Regards, Salvatore
