[Secure-testing-team] summary of what's blocking security fixes from testing

Joey Hess joeyh at debian.org
Wed Sep 14 03:45:52 UTC 2005 

Another pass over security holes that are fixed in unstable but not
testing. Not sure if these are still useful to send to -release.

RM summary: m68k is killing us with ICE after ICE and contributing to
blocking hald of the fixes. The transitions arn't hurting as much after
the last heroic britney run, although kde/qt is of course a problem.

Testing team summary: well, of these asterisk, inkscape, some kde stuff,
lm-sensors, mysql-dfsg-4.1, and texmacs seem like the most likely
candidates for upload to secure-testing, although some of the holes may
not warrant a DTSA.

apache
	m68k build needs requeued once deps are met
asterisk
	30 days old
	m68k build needs requeued once deps are met
	blocked indirectly by qt transition
bzip
	8/10 days old
chmlib
	3/10 days old
clamav (fixed in secure-testing)
	33 days old
	blocked by gmp
courier
	too young
fftw3
	m68k FTBFS
gxine
	too young
inkscape
	20 days old
	blocked by libsigc++-2.0
kdeedu
	FTBFS on arm (ICE)
	missing hppa and m68k builds
kdegraphics
	kde transtion
kdelibs
	kde transition
kismet (fixed in secure-testing)
	23 days old
	blocked by gmp
lm-sensors
	23 days old
	indirectly blocked by perl
mozilla (partially fixed in secure-testing)
	41 days old, AKA, is this package being maintained?
	rc bugs, FTBDS, etc
mozilla-firefox (partially fixed in secure-testing)
	too young
mozilla-thunderbird
	41 days old
	FTBFS on alpha, arm, m68k
mysql-dfsg-4.1
	26 days old
	rc bug
	FTBFS on m68k
net-snmp
	too young
	blocked by perl
netpbm
	8/10 days old
	FTBFS on m68k (ICE)
ntp
	177 days old
	3 RC bugs, max 98 days old, none with responses from maintainers
	recommend removal from testing (and/or debian)
openmotif
	106 days old
	non-free package, still missing s390 build
	(I tried and failed to build this on raptor, machine is too
	unstable.)
openssh
	frozen, rc bug
	security hole is minor (CAN-2005-2666)
qt-x11-free
	too young
	rc bug
pdns
	FTBFS on m68k
	rc bugs
php4 (fixed in secure-testing)
	needs requeue on m68k once deps are satisfied
	blocked by qt-x11-free, perl, etc
python2.1
	alpha build succeeded 2 weeks ago but gone missing
	mips, mipsel, powerpc builds ditto
	blocked by gmp
python2.2
	FTBFS m68k (ICE)
	FTBFS hppa
	blocked by gmp
python2.3
	FTBFS m68k (ICE)
	FTBFS hppa
	blocked by gmp
rpm
	FTBFS m68k (ICE)
smb4k
	hppa build needs requeue once build deps are met
	m68k ditto
	arm ditto
	kde transition
squid
	too young
sqwebmail
	too young
texmacs
	59 days old
	FTBFS arm, hppa, m68k (ICE)
turqstat
	too young
	blocked by qt-x11-free
xorg-x11
	too young
	build needs retried on arm

-- 
see shy jo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20050913/cbc01822/attachment.pgp

More information about the Secure-testing-team mailing list