From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <mike@fly.osdn.org.ua>
X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on sa.int.altlinux.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.4 required=5.0 tests=AWL,BAYES_00 autolearn=ham
	version=3.2.3
Date: Sat, 1 Mar 2008 11:50:57 +0200
From: Michael Shigorin <mike@osdn.org.ua>
To: ALT Devel discussion list <devel@lists.altlinux.org>
Message-ID: <20080301095057.GA21833@osdn.org.ua>
Mail-Followup-To: ALT Devel discussion list <devel@lists.altlinux.org>
References: <20080229222108.GA15942@granary.armor.altlinux.org>
	<20080229222609.GC9811@wo.int.altlinux.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <20080229222609.GC9811@wo.int.altlinux.org>
User-Agent: Mutt/1.4.2.1i
Subject: Re: [devel] [cyber] Q: apache2-2.2.8-alt1 %changelog
X-BeenThere: devel@lists.altlinux.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: ALT Linux Team development discussions <devel@lists.altlinux.org>
List-Id: ALT Linux Team development discussions <devel.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
	<mailto:devel-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/devel>
List-Post: <mailto:devel@lists.altlinux.org>
List-Help: <mailto:devel-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
	<mailto:devel-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Mar 2008 09:50:59 -0000
Archived-At: <http://lore.altlinux.org/devel/20080301095057.GA21833@osdn.org.ua/>
List-Archive: <http://lore.altlinux.org/devel/>
List-Post: <mailto:devel@altlinux.org>

On Sat, Mar 01, 2008 at 01:26:09AM +0300, Dmitry V. Levin wrote:
> On Sat, Mar 01, 2008 at 01:21:08AM +0300, QA Team Robot wrote:
> [...]
> > apache2 - The most widely used Web server on the Internet
> > * Fri Feb 29 2008 Aleksey Avdeev <solo@altlinux> 2.2.8-alt1
> > - 2.2.8
> > - Adding SECURITY to upstream:
> >   + CVE-2007-6421 (cve.mitre.org)
> >   + CVE-2007-6422 (cve.mitre.org)
> >   + CVE-2007-6388 (cve.mitre.org)
> >   + CVE-2007-5000 (cve.mitre.org)
> >   + CVE-2008-0005 (cve.mitre.org)
> > - Fix #14601: less-than-optimal examples in con/sites-available.
> >   (Thanks Mikhail Gusarov <dottedmag altlinux org>)
> >   + update apache2-2.2.6-alt-configs-0.1.patch to
> >     apache2-2.2.8-alt-configs-0.2.patch
> > - Updating patchs for 2.2.6:
> >   + apache2-2.2.6-alt-debian.conf-0.1.patch to
> >     apache2-2.2.8-alt-debian.conf-0.1.patch
> >   + apache2-2.2.6-alt-default_https.conf.in-0.1.patch to
> >     apache2-2.2.8-alt-default_https.conf.in-0.1.patch
> >   + apache2-2.2.6-alt-cgi-0.1.patch to
> >     apache2-2.2.8-alt-cgi-0.1.patch
> 
> Что хотел сказать этим %changelog'ом его автор?

Если правильно понял (не претендую по техническим причинам),
то написал бы примерно так:

- 2.2.8: security fixes:
  + CVE-2007-6421: XSS in mod_proxy_balancer (script injection)
  + CVE-2007-6422: ...
- fixed #14601: suboptimal examples in conf/sites-available
  (thanks dottedmag@)
  + updated apache2-2.2.6-alt-configs-0.*.patch
- updated 2.2.6 patches:
  + apache2-2.2.*-alt-debian.conf-0.1.patch
  + apache2-2.2.*-alt-default_https.conf.in-0.1.patch
  + apache2-2.2.*-alt-cgi-0.1.patch

PS: я (и, помнится, ab@) высказывался в том смысле, что готов
консультировать жабером/почтой по написанию описаний, ченжлогов
и особенно названий (в т.ч. в API).  Welcome :-)

-- 
 ---- WBR, Michael Shigorin <mike@altlinux.ru>
  ------ Linux.Kiev http://www.linux.kiev.ua/