[Bug 248673] net/ceph14: Update to 14.2.11
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sun Aug 16 02:20:46 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=248673
Kubilay Kocak <koobs at FreeBSD.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |ports-secteam at FreeBSD.org,
| |wjw at digiware.nl
Severity|Affects Only Me |Affects Many People
Summary|net/ceph14: Upgrade to |net/ceph14: Update to
|latest release 14.2.11 |14.2.11
Keywords| |needs-patch, needs-qa,
| |security
Status|New |Open
Priority|--- |Normal
Flags| |maintainer-feedback?(wjw at di
| |giware.nl),
| |merge-quarterly?
URL| |https://ceph.io/releases/v1
| |4-2-11-nautilus-released/
--- Comment #2 from Kubilay Kocak <koobs at FreeBSD.org> ---
^Triage: Please set the maintainer-approval attachment flag (to +) on patches
for ports you maintain to signify approval
Attachment -> Details -> maintainer-approval [+]
Also, If you could obsolete the prior patch that would be great
Additionally, the 14.2.10 changelog notes a security fix:
CVE-2020-10753: rgw: sanitize newlines in s3 CORSConfiguration’s ExposeHeader
(William Bowling, Adam Mohammed, Casey Bodley)
If this .9 -> .11 cannot/shouldn't be merged to quarterly (it is a bugfix
release), then a separate patch for .9 -> .10 should be produced such that that
update can be committed first and merged to quarterly
I would opt for merging the .9 -> .11 update unless there is a good reason not
to.
Pending security/VuXML entry
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list