Bug#777312: nmu (for stable): vlc (and mplayer?)

To: Luciano Bello <luciano@debian.org>, 777312@bugs.debian.org
Subject: Bug#777312: nmu (for stable): vlc (and mplayer?)
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 07 Feb 2015 12:26:22 +0000
Message-id: <[🔎] 1423311982.1857.6.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 777312@bugs.debian.org
In-reply-to: <[🔎] 13687410.RRnST32hlS@box>
References: <[🔎] 13687410.RRnST32hlS@box>

On Sat, 2015-02-07 at 13:01 +0100, Luciano Bello wrote:
> I just dak-installed liblivemedia_2012.05.17-1+wheezy1 to release a DSA 
> announcing fix for was recently updated in wheezy-security and wheezy-p-u to 
> fix CVE-2013-6933. This requires  vlc and mplayer to be built against this new 
> version. The plan is to include all these fixes in the same DSA.

So the binNMUs need to happen in wheezy-security, not p-u. I've just
scheduled those. I assume they'll pick up the liblivemedia from
security, but I can't check the logs.

> vlc is in the security-archive mplayer is not. If I understand correctly, in 
> the mplayer case, I just need to recompile mplayer using the now-installed 
> liblivemedia and upload to security master as a normal security fix. Am I 
> right?

You'd need the mplayer source in the security archive in order to be
able to binNMU it, so if it's not there already then yes it'll need to
be uploaded anyway at which point there'd be no need for binNMUs.

Regards,

Adam

Reply to:

References:
- Bug#777312: nmu (for stable): vlc (and mplayer?)
  - From: Luciano Bello <luciano@debian.org>

Prev by Date: Bug#777316: unblock (pre-approval): x2goclient/4.0.3.1-4
Next by Date: Bug#777329: unblock: ntp/1:4.2.6.p5+dfsg-5
Previous by thread: Bug#777312: nmu (for stable): vlc (and mplayer?)
Next by thread: Bug#777316: unblock (pre-approval): x2goclient/4.0.3.1-4
Index(es):
- Date
- Thread