Hi Scott, On Sun, May 05, 2019 at 10:59:56PM +0800, Scott Leggett wrote: > Control: retitle -1 unblock dhcpcd5/7.1.0-2 > > On 2019-05-02.18:38, Paul Gevers wrote: > > We very much prefer you to try and cherry-pick at this point of the > > release cycle. > > Hi Paul, > > Please unblock package dhcpcd5. > > See attached for the debdiff between the version of dhcpcd5 currently in > testing and unstable (7.1.0-1), and my proposed update (7.1.0-2). > > The changes cherry-pick patches from upstream to address four security > issues disclosed in the last week or so. > > The changelog entry is: > > dhcpcd5 (7.1.0-2) unstable; urgency=high > > * Apply upstream patches to fix potential security vulnerabilities > (Closes: #928056, #928104, #928105, #928440) > * Add lintian override for upstream patch spelling
As for all those CVEs are known (see respective bugs and security-tracker), can you please add the rspective CVE ids as well to the debian/changelog enttries? Regards, Salvatore
