The package is managed with quilt patches but there are significant changes to five files made directly to the files rather than via quilt patches. (Of those, only the changes to the .c files look like security fixes, but those should be handled via individual patches, similar to the now-removed CVE-2017-9058.patch.) The changelog still mentions Debian unstable rather than a specific Ubuntu release.
I've got some concerns about this:
$ diffstat !$ 1.9.2-2_ 1.9.3-1. diff patches/ CVE-2017- 9058.patch | 13 -- patches/ series | 1 +++++++ ++++++- ------- ------- --
diffstat libytnef_
ChangeLog | 16 +++
configure.ac | 2
debian/changelog | 24 +++++
debian/compat | 2
debian/control | 13 +-
debian/
debian/
lib/ytnef.c | 170 +++++++
ytnef/main.c | 37 ++++----
ytnefprint/main.c | 2
10 files changed, 168 insertions(+), 112 deletions(-)
The package is managed with quilt patches but there are significant changes to five files made directly to the files rather than via quilt patches. (Of those, only the changes to the .c files look like security fixes, but those should be handled via individual patches, similar to the now-removed CVE-2017- 9058.patch. ) The changelog still mentions Debian unstable rather than a specific Ubuntu release.
How did you test your changes?
Thanks