Re: Bug#877258: stretch-pu: package busybox/1:1.22.0-19+deb9u1
On Thu, 2017-11-30 at 20:17 +0100, Christoph Biedl wrote:
> Second attempt, updated debdiff attached.
>
> Changes:
>
> also address:
>
> + * Fix integer overflow in bzip2 decompresson.
> + Closes: #879732 [CVE-2017-15873]
> + * Filter out terminal escape sequence filtering in autocompletion.
> + Closes: #882258 [CVE-2017-16544]
>
> A call for tests was sent to debian-boot three days ago¹, no
> reaction though.
>
> Assuming your
>
> > I'd be happy with this in general, but the udeb means we need an
> > explicit d-i RM ack; CCing appropriately.
>
> still applies, Cc: is set accordingly.
>
Folks, what's the current status here?
Regards,
Adam
Reply to: