Date: Sun, 16 Aug 2020 02:20:45 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 248673] net/ceph14: Update to 14.2.11 Message-ID: <bug-248673-7788-ETa6hvkCa7@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-248673-7788@https.bugs.freebsd.org/bugzilla/> References: <bug-248673-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D248673 Kubilay Kocak <koobs@FreeBSD.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ports-secteam@FreeBSD.org, | |wjw@digiware.nl Severity|Affects Only Me |Affects Many People Summary|net/ceph14: Upgrade to |net/ceph14: Update to |latest release 14.2.11 |14.2.11 Keywords| |needs-patch, needs-qa, | |security Status|New |Open Priority|--- |Normal Flags| |maintainer-feedback?(wjw@di | |giware.nl), | |merge-quarterly? URL| |https://ceph.io/releases/v1 | |4-2-11-nautilus-released/ --- Comment #2 from Kubilay Kocak <koobs@FreeBSD.org> --- ^Triage: Please set the maintainer-approval attachment flag (to +) on patch= es for ports you maintain to signify approval Attachment -> Details -> maintainer-approval [+] Also, If you could obsolete the prior patch that would be great Additionally, the 14.2.10 changelog notes a security fix: CVE-2020-10753: rgw: sanitize newlines in s3 CORSConfiguration=E2=80=99s Ex= poseHeader (William Bowling, Adam Mohammed, Casey Bodley) If this .9 -> .11 cannot/shouldn't be merged to quarterly (it is a bugfix release), then a separate patch for .9 -> .10 should be produced such that = that update can be committed first and merged to quarterly I would opt for merging the .9 -> .11 update unless there is a good reason = not to. Pending security/VuXML entry --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-248673-7788-ETa6hvkCa7>