Re: CVE-2015-7557/librsvg packages for wheezy and jessie (was: squeeze update of librsvg?)

To: Santiago Ruano Rincón <santiagorr@riseup.net>
Cc: debian-lts@lists.debian.org, Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>, team@security.debian.org
Subject: Re: CVE-2015-7557/librsvg packages for wheezy and jessie (was: squeeze update of librsvg?)
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Fri, 25 Mar 2016 07:46:53 +0100
Message-id: <[🔎] 20160325064653.GA19250@eldamar.local>
Mail-followup-to: Santiago Ruano Rincón <santiagorr@riseup.net>, debian-lts@lists.debian.org, Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>, team@security.debian.org
In-reply-to: <[🔎] 20160324232058.GB26245@riseup.net>
References: <1451440184.25978.62.camel@debian.org> <20160109180634.GA21309@nomada> <20160118075722.GA17689@eldamar.local> <20160119142950.GC4702@novelo> <[🔎] 20160324232058.GB26245@riseup.net>

Hi Santiago,

On Fri, Mar 25, 2016 at 12:20:58AM +0100, Santiago Ruano Rincón wrote:
> Hi,
> 
> Please, find attached the debdiffs that fix CVE-2015-7557 in wheezy and
> jessie. Since this is a no-dsa issue, it could address a next point
> release.

Thanks for your work! Please have the fix scheduled via a point
release, but keep in mind that the window for having it included
already in the next one is closing this weekend.

Can you contact the stable release managers?

Regards,
Salvatore

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- CVE-2015-7557/librsvg packages for wheezy and jessie (was: squeeze update of librsvg?)
  - From: Santiago Ruano Rincón <santiagorr@riseup.net>

Prev by Date: Re: teaching people to ignore warnings is bad (Re: Archive of squeeze-lts ?)
Next by Date: Re: Xen security updates on Wheezy
Previous by thread: CVE-2015-7557/librsvg packages for wheezy and jessie (was: squeeze update of librsvg?)
Next by thread: Re: nss: CVE-2015-7181, CVE-2015-7182 and CVE-2015-4000 [was nss: CVE-2015-4000]
Index(es):
- Date
- Thread