| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| |\
| |
| |
| |
| | |
Update security-tracker data for end of life of regular security support for stretch
See merge request security-tracker-team/security-tracker!55
|
| | |
| |
| |
| | |
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| | |
| |
| |
| | |
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
In the former code block we target packages which need an update in
multiple supported release. The later block is iterating only over
individual releases to add packages individually per release where
needed.
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Depending on if a suffix should be included in the printout of the
package set accordingly the format string for the printf invocation.
The idea is depending on if only on release is supported the listing in
the dsa-needed.txt should be either:
--
pkg
--
if only one suite is supported. In the case multiple suites are
supported but the package needs an update only in one release, the
listing should be
--
$pkg/release
--
Introduce helper function taking arguments as package, flag for suffix
inclusion an to be used suffix.
A later commit will use the new helper function where needed.
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| | |
| |
| |
| | |
Fixes: 2df873e89355 ("Replace tabs with spaces for add-dsa-needed.sh script")
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
We do this in two steps. In a first step for all supported releases
where there is a common package which needs an update (thus after the
sorting of the common list and filter out only the duplicated lines) we
add those to dsa-needed.txt without suffix to indicate the package needs
an update in multiple (supported) suites.
In the later step, we only -- for each release -- add pkg/release to
dsa-needed.txt to indicate the package needs only an update in the
respective release.
v2: Fix typo in comment about adding packages with /$release suffix
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| |/
|
|
| |
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| |
|
|
|
|
| |
parenthesis '['
Square bracket before RELEASES is unnecessary
|
| |\
| |
| |
| |
| | |
Distro config reunification
See merge request security-tracker-team/security-tracker!48
|
| | |
| |
| |
| |
| | |
This also removes the normalize_release method, and Issue::get_status()
no longer supports passing aliases such as 'stable' or 'lts'.
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| | |
And take the file out of README.releases.
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| |/
|
|
| |
we will likely not be modifying dla-needed.txt.
|
| |
|
|
| |
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| |
|
|
|
|
|
|
|
| |
The first revision on the website doesn't have a postfix.
The second revision has a postfix of -2.
I was going to do something similar for DSA too, but found regression update
advisories are not available on the website for DSAs.
|
| |
|
|
|
|
| |
This reverts commit 7177c0e348acbd70b76de7fc36116d02201bc9bf.
I accidentally pushed this to the wrong branch.
|
| |
|
|
|
|
|
|
|
| |
The first revision on the website doesn't have a postfix.
The second revision has a postfix of -2.
I was going to do something similar for DSA too, but found regression update
advisories are not available on the website for DSAs.
|
| |
|
|
|
|
| |
This reverts commit c878209005bc1bb46345eb3f5cb6357135841131.
This affects gen-* and carnil expressed it was unnecessary.
I'll try to find another way to remember to add a short package description in security announcements.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Since the regular expression was tightened to fix a bug and not remove
e.g. spice ans spice-gtk from a *-needed.list removal of specific
entries of packages/stable or packages/oldstable got broken (wich is
used by the Debian security team to mark entries which only need an
update in one of the supported suites).
Retain the desired fixed behaviour but try to allow to properly remove
package/{old,}stable entries again.
Fixes: b3070631dfbb ("bin/gen-DSA: Fix package removal from the needed_file. Don't remove packages starting with the same string as the to be removed package.")
Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
|
| | |
|
| |
|
|
|
|
|
| |
The novell.com address is historical and deprecated.
Requested-by: Alexandros Toptsoglou <atoptsoglou@suse.com>
Requested-in: <a3bc5c9f-d52d-a79d-e1da-6a6484cee9ea@suse.com>
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
As the LTS team also sometimes works on packages with only <no-dsa>
issues open, it might be good to also inform package maintainers about
this.
This adds an ltsp-update-planned-minor.txt mail template plus a command
line option (--minor) that LTS front desk people can use if they choose
to add a package to dla-needed.txt with <no-dsa> issues only.
|
| |
|
|
| |
is not a TTY
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
Update references for backports suites for buster-backports,
stretch-backports and jessie-backports for status overview pages.
For testing migration canidates (which is helpful during freeze periods
to determine which fixes from usntable need to go to testing yet), make
bullseye the new testing distribution.
Updates lists of releases to sid, bullseye, buster, stretch and jessie.
|
| |
|
|
|
|
|
| |
Shift mappins for oldstable to stretch, stable to buster and new testing
to bullsyeye.
Make LTS suite jessie oldoldstable distribution.
|
| |
|
|
|
|
|
| |
Add release mapping for Debian 10 (buster) for EOL in all either
security team or LTS team supported suites.
There is no EOL (= LTS supported EOL) set yet for buster.
|
| |
|
|
|
| |
Include in listing the oldstable distribution by enable the boolean
value include_oldstable to true and enable the including logic.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
