[blog] 01/02: move archlinux imap issue to #136
Holger Levsen
holger at layer-acht.org
Tue Dec 5 01:39:48 UTC 2017
This is an automated email from the git hooks/post-receive script.
holger pushed a commit to branch master
in repository blog.
commit 5fb057d93a9a7a5a4763e7eeae971d2aa46730de
Author: Holger Levsen <holger at layer-acht.org>
Date: Tue Dec 5 01:38:29 2017 +0000
move archlinux imap issue to #136
Signed-off-by: Holger Levsen <holger at layer-acht.org>
---
drafts/136.mdwn | 12 ++++++++++++
drafts/137.mdwn | 10 ----------
2 files changed, 12 insertions(+), 10 deletions(-)
diff --git a/drafts/136.mdwn b/drafts/136.mdwn
index 1767597..3b16353 100644
--- a/drafts/136.mdwn
+++ b/drafts/136.mdwn
@@ -9,6 +9,18 @@ Media coverage
* A while back, on October 31st 2017, Ludovic Courtès wrote a [summary about the status of Reproducible Guix](https://gnu.org/software/guix/news/reproducible-builds-a-status-update.html), which for them led to a nice and unexpected benefit: faster downloads!
+Arch Linux imap key leakage
+---------------------------
+
+A [security issue](https://bugs.archlinux.org/task/56484) was found on the imap
+package for Arch Linux thanks to the reproducible builds efforts. Due to a
+hardcoded key-generation routine in the build() step of imap's PKGBUILD (the
+standard packaging file for Arch Linux pakcages), a default secret key was
+generated and leaked on all imap installations.
+
+This was prompty reviewed, confirmed and fixed by the Arch Linux package
+maintainers.
+
Debian Packages reviewed and fixed, and bugs filed
-------------------------------------------
diff --git a/drafts/137.mdwn b/drafts/137.mdwn
index 06b2da4..0ee763a 100644
--- a/drafts/137.mdwn
+++ b/drafts/137.mdwn
@@ -16,14 +16,4 @@ lede/openwrt package feeds
https://github.com/openwrt/packages/pull/5217
https://github.com/openwrt/packages/pull/5218
-Arch Linux imap key leakage
----------------------------
-A [security issue](https://bugs.archlinux.org/task/56484) was found on the imap
-package for Arch Linux thanks to the reproducible builds efforts. Due to a
-hardcoded key-generation routine in the build() step of imap's PKGBUILD (the
-standard packaging file for Arch Linux pakcages), a default secret key was
-generated and leaked on all imap installations.
-
-This was prompty reviewed, confirmed and fixed by the Arch Linux package
-maintainers.
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/reproducible/blog.git
More information about the Reproducible-commits
mailing list