Dear release team, please skip to the bottom for the info you're looking for. Salvatore Bonaccorso <carnil@debian.org> writes: > What is as well different for the uploads is to which upload queue you > would upload in the end. ftp-master for the proposed-updates via point > release, security-master for the security uploads. > > There are two good entry points about the uploads for stable: Yikes, how did I miss these? > https://www.debian.org/doc/manuals/developers-reference/pkgs.en.html#special-case-uploads-to-the-stable-and-oldstable-distributions I've updated the metadata of the blocked bug to show that the version in bullseye is in fact affected (it already was on the security tracker, of course). The rest of the info is there. > https://www.debian.org/doc/manuals/developers-reference/pkgs.en.html#handling-security-related-bugs The vulnerability is already public, and at the blocked bug Salvatore advised me that a DSA is not required and that uploading to stable-updates for the next point release is the correct action. > Hope this helps! Yes, definitely, much obliged! Can I upload now? Regards, Nicholas
Attachment:
signature.asc
Description: PGP signature