Theodore Y. Ts'o <tytso@mit.edu> (2020-01-21): > On Tue, Jan 21, 2020 at 07:57:54PM +0000, Adam D. Barratt wrote: > > Control: tags -1 + confirmed d-i > > > > On Thu, 2020-01-09 at 22:34 -0500, Theodore Y. Ts'o wrote: > > > +e2fsprogs (1.44.5-1+deb10u3) buster; urgency=medium > > > + > > > + * Fix CVE-2019-5188: potential stack underflow in e2fsck (Closes: > > > #948508) > > > + * Fix use after free in e2fsck (Closes: #948517) > > > > This looks OK to me, but will also need a d-i ACK as e2fsprogs produces > > a udeb; CCing and tagging to reflect that. > > Thanks! Should I go ahead and upload, or should we wait for the d-i > ACK first? It'll just stay in the proposed-stable-updates queue until > final approval as I understand things, correct? You can upload. And no, it will stay in p-u-new until it's approved by some SRM, at which point it will be made available in stable-proposed-updates (note word order), until the point release. Cheers, -- Cyril Brulebois (kibi@debian.org) <https://debamax.com/> D-I release manager -- Release team member -- Freelance Consultant
Attachment:
signature.asc
Description: PGP signature