Re: Bug#867814: stretch-pu: package ncurses/6.0+20161126-1+deb9u1

To: Sven Joachim <svenjoac@gmx.de>, 867814@bugs.debian.org
Cc: kibi@debian.org, debian-boot@lists.debian.org
Subject: Re: Bug#867814: stretch-pu: package ncurses/6.0+20161126-1+deb9u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 15 Jul 2017 11:04:19 +0100
Message-id: <[🔎] 1500113059.5317.185.camel@adam-barratt.org.uk>
In-reply-to: <87eftpcyb4.fsf@turtle.gmx.de>
References: <87eftpcyb4.fsf@turtle.gmx.de>

Control: tags -1 + confirmed d-i

On Sun, 2017-07-09 at 19:30 +0200, Sven Joachim wrote:
> Recently a few flaws in the tic program and the tic library have been
> detected: null pointer dereference, buffer overflow, stack smashing, you
> name it.  Six bugs have been reported in the Red Hat bugtracker and four
> CVEs assigned.  Fortunately there are rather few users who would run
> affected programs at all, so it was decided that no DSA would be
> necessary.

I'd be okay with this, but it will need a kibi-ack due to the udeb.

Regards,

Adam

Reply to:

Follow-Ups:
- Re: Bug#867814: stretch-pu: package ncurses/6.0+20161126-1+deb9u1
  - From: Sven Joachim <svenjoac@gmx.de>

Prev by Date: Bug#868357: installation-guide: get rid of "not up to date for <arch>" warnings
Next by Date: Re: Bug#867814: stretch-pu: package ncurses/6.0+20161126-1+deb9u1
Previous by thread: Bug#868357: installation-guide: get rid of "not up to date for <arch>" warnings
Next by thread: Re: Bug#867814: stretch-pu: package ncurses/6.0+20161126-1+deb9u1
Index(es):
- Date
- Thread