About the security issues affecting catdoc in Wheezy

To: Martin Ferrari <tincho@debian.org>
Cc: debian-lts@lists.debian.org
Subject: About the security issues affecting catdoc in Wheezy
From: Raphael Hertzog <hertzog@debian.org>
Date: Tue, 11 Jul 2017 11:49:30 +0200
Message-id: <[🔎] 20170711094930.vaivvvwn2mdynfe7@home.ouaza.com>
Mail-followup-to: Raphael Hertzog <hertzog@debian.org>, Martin Ferrari <tincho@debian.org>, debian-lts@lists.debian.org

Hello Martin,

The Debian LTS team recently reviewed the security issue(s) affecting your
package in Wheezy:
https://security-tracker.debian.org/tracker/CVE-2017-11110

We decided that we would not prepare a wheezy security update since
the impact is low and unlikely to represent a serious issue in most
situations where catdoc is generally used.

That said the wheezy users would most certainly benefit from a fixed
package.

If you want to work on such an update, you're welcome to do so. Please
try to follow the workflow we have defined here:
https://wiki.debian.org/LTS/Development

If that workflow is a burden to you, feel free to just prepare an
updated source package and send it to debian-lts@lists.debian.org (via a
debdiff, or with an URL pointing to the source package, or even with a
pointer to your packaging repository), and the members of the LTS team
will take care of the rest. However please make sure to submit a tested
package.

Thank you very much.

Raphaël Hertzog,
  on behalf of the Debian LTS team.
-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: https://www.freexian.com/services/debian-lts.html
Learn to master Debian: https://debian-handbook.info/get/

Reply to:

Follow-Ups:
- Re: About the security issues affecting catdoc in Wheezy
  - From: Martín Ferrari <tincho@debian.org>

Prev by Date: Re: Fwd: phpldapadmin_1.2.2-5+deb7u1_amd64.changes REJECTED
Next by Date: Wheezy update of ipsec-tools?
Previous by thread: June Report
Next by thread: Re: About the security issues affecting catdoc in Wheezy
Index(es):
- Date
- Thread