Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2

To: Salvatore Bonaccorso <carnil@debian.org>, 849725@bugs.debian.org
Subject: Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 31 Dec 2016 16:58:46 +0000
Message-id: <[🔎] 1483203526.22890.41.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 849725@bugs.debian.org
In-reply-to: <[🔎] 20161230065215.royik3blujtvadzw@eldamar.local>
References: <[🔎] 20161230065215.royik3blujtvadzw@eldamar.local>

Control: tags -1 + confirmed

On Fri, 2016-12-30 at 07:52 +0100, Salvatore Bonaccorso wrote:
> src:cairo in jessie is affected by CVE-2016-9082 which would not
> warrant a DSA. A while back in october the issue was already fixed in
> unstable, cf. #842289. I would like to propose the attached debdiff
> for the upcoming point release.

Please go ahead.

> Note: in the 1.14.0-2.1 -> 1.14.0-2.1+deb8u1 the binary package
> binary-cairo-perf-utils got one more binary added
> (/usr/bin/cairo-perf-graph-files). Whit this update that goes back to
> the 1.14.0-2.1 situation.

Do we know why that happened?

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2
  - From: Salvatore Bonaccorso <carnil@debian.org>

References:
- Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Re: Security improvements for stable kernels
Next by Date: Processed: Re: Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2
Previous by thread: Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2
Next by thread: Bug#849725: jessie-pu cairo/1.14.0-2.1+deb8u2
Index(es):
- Date
- Thread