[SECURITY] [DLA 4122-1] libbssolv-perl security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4122-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Andrej Shadura
April 09, 2025 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------
Package : libbssolv-perl
Version : 0.17-3+deb11u1
This update includes an upstream patch to accept "0" as a valid epoch
in Debian packages processed by BSSolv.
This fixes a bug that prevents the Open Build Service backend from working
correctly. In particular, the Download on Demand feature is unable
to process woff-tools package from Debian, and ends up deleting the .deb
file immediately after downloading it.
See https://github.com/openSUSE/perl-BSSolv/pull/17 for more details
on this bug upstream.
This bug has also been fixed in Debian 12 bookworm and newer.
No other software is known to be affected by this issue.
For Debian 11 bullseye, this problem has been fixed in version
0.17-3+deb11u1.
We recommend that you upgrade your libbssolv-perl packages.
For the detailed security status of libbssolv-perl please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libbssolv-perl
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
iHUEARYKAB0WIQSD3NF/RLIsyDZW7aHoRGtKyMdyYQUCZ/Y3sQAKCRDoRGtKyMdy
YUG9AQDPUhJ3BGV1OqKUI5IkVt6Sb9I7GzShGnqMpDYyQ8n/KQEA6QDIzO3SBgRk
0Oxet4Uvif0/ConCl4vTZ7Co33yYiwc=
=NNX/
-----END PGP SIGNATURE-----
Reply to: