[Secure-testing-team] Security update for Debian Testing - 2008-12-06
Johannes Wiedersich
jowied at googlemail.com
Sat Dec 6 09:03:04 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I was wondering, why I don't receive any testing security updates any more.
secure-testing-team at lists.alioth.debian.org wrote:
[snip]
> Migrated from unstable:
> =======================
> cups 1.3.8-1lenny4:
> CVE-2008-5286: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5286
> http://bugs.debian.org/507183
[snip]
> How to update:
> --------------
> Make sure the line
>
> deb http://security.debian.org lenny/updates main contrib non-free
>
> is present in your /etc/apt/sources.list.
# grep -v ^# /etc/apt/sources.list
deb http://ftp2.de.debian.org/debian/ lenny main contrib non-free
deb-src http://ftp2.de.debian.org/debian/ lenny main contrib non-free
deb http://volatile.debian.org/debian-volatile lenny/volatile main
contrib non-free
deb http://security.debian.org/ lenny/updates main contrib non-free
deb http://debian-multimedia.org lenny main
# apt-cache policy cups
cups:
Installed: 1.3.8-1lenny2
Candidate: 1.3.8-1lenny2
Version table:
*** 1.3.8-1lenny2 0
500 http://ftp2.de.debian.org lenny/main Packages
100 /var/lib/dpkg/status
It turns out that ftp2.de.debian.org is not up to date any more.
I added ftp.de.debian.org to apt's sources and now have 35 upgradable
packages that have been missed by ftp2.de.d.o.
I have two questions:
Where should I report the problem with ftp2.de.debian.org?
Is there a recommended way of checking one's sources.list for outdated
servers?
Thanks in advance,
Johannes
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkk6P8MACgkQC1NzPRl9qEVB8QCfZPQb743Ns0Cr/Ejt8P03Qsq3
+60Ani2jXHri3qIJSJaUuKMpK3nfQCmZ
=gYge
-----END PGP SIGNATURE-----
More information about the Secure-testing-team
mailing list