Merge review report [2014-03-20]
Simon Deziel
simon.deziel at gmail.com
Fri Mar 28 16:28:48 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Since Debian is about to get OpenSSH 6.6 [1], I was wondering if that
would be possible to get this bugfix/security release [2] in Trusty too?
Regards,
Simon
1: https://lists.debian.org/debian-i18n/2014/03/msg00019.html
2: http://www.openssh.com/txt/release-6.6
On 14-03-20 08:37 AM, Robie Basak wrote:
> I've been thinking about doing a regular throrough review of all
> packages that we [server team] look after, to ensure that no essential
> package unnecessarily ships a version that is significantly older than
> the last relevant freeze date.
>
> So I got on with it. To start with, I looked at all packages that
> ~ubuntu-server is subscribed to, using [1].
>
> We don't currently have a priority list for these, so I just looked for
> packages that looked important to me, or otherwise whose versions are
> user-facing (eg. apache2, php5). I figured this would do for a start.
>
> Things I found:
>
> * genshi: python3-genshi was broken in Trusty due to it being actively
> worked on by Barry. This is now fixed.
>
> * golang: we should have tar xattr support from Debian 2:1.2.1-2, which
> appears to block docker.io. James has just merged this.
>
> * docker.io: this wasn't in the list; James mentioned this one.
> ~ubuntu-server is now subscribed for next time. I notice that James has
> just filed an FFe [2].
>
> * leveldb: 1.15.0-2 enabled proper testing at build time for all
> [Ubuntu] architectures. Now synced.
>
> That's it. I think we're in good shape for Trusty.
>
> Since we're in feature freeze, I skipped anything that looked too
> invasive. I also don't currently have debian/watch status for any
> -0ubuntu* packages in this report, and I did skip reviewing packages
> where I don't think it's as important to have the latest version anyway.
> These are things I hope to fix next time.
>
> So for next time, I'd like to:
>
> 1) Arrange the list in some kind of priority order.
>
> 2) See debian/watch status for -0ubuntu* packages.
>
> 3) Support some kind of suppression for newer versions already reviewed.
>
> Robie
>
> [1] http://reqorts.qa.ubuntu.com/reports/ubuntu-server/merges.html
> [2] https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1295093
>
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQJ8BAEBCgBmBQJTNaM9XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ1NjVDMzc0QUZCQUQyRkM2MjBDNkMxQkI3
MkZFMERBRTkwMEIyQzM0AAoJEHL+Da6QCyw0GBQP/1nCT9mSzRh2pQFjWK/x85zW
oNRUoCFB7K4evuIb8jmj8XKHYX0YTj5+tLwvEP9oZibrRd6zQEmA4QUyJfWPiR5j
uZkPJDn6+yfp1V2kcqwyH25Tn7e2HimIggoTXhIN0cIg3DQeSBvsi96yZkuZNYPd
2qgfkQn4+RKwZVGRj6Xdi5KqQXbntGcdUnzQin4aRQo5wqQ3pVux1R87fUgayttR
6oOUlXSVVNhENTiRQULIr15ciVRThuzLBCiJlmcmDdU474O/Eoib/6qVCp9Zl5XV
3Vw3wM8TN+YRfKA1X2+zwoocCth/WIm9ddtI0ngiP9BYEZnLOF0ceXAPVOBr3hGq
NA6Z4p2f88SN3+9vOsZbmKSQWyInucnAPCxx3xtt8hRpoaUpFhuGWZJNdV/YPyi8
VKRV8fmMbzDEnnFTo1a73WT/lV7RiT4yp3om1Fu9GvsPZp95+OxwnMJ4nV6p3mNn
fP9BOlHXJs0fuHKRPkcJaPzsC/Yfv2cFG0hbRvnbrutZkZuUbnuM/YlaW3qFg5jM
QsZ07kxMeMUy/KgCcIWSaUq3JAxyj32zBmxiiLgm8T221nFUqZb5c01yF2/k9YXF
IJm74QfH+oM3Hj0vqQFxsDgPuffBW90hKwV7vFDv5dNim/5U9Lj/82IBxlaHCzNQ
hQk3nkbcu497cTK3rBBV
=SP1I
-----END PGP SIGNATURE-----
More information about the ubuntu-server
mailing list