[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: calibre / CVE-2018-7889

CCed to security team.

Hello Security Team,

Upstream feel that the fix for this is to provide a warning to the
user. See:


(actually I can't find this warning in the code... but only a quick
search so far...)

However I don't think this is a real solution to the security
problem. As a result I am prone to mark this no-dsa in wheezy.

What do you think?
Brian May <bam@debian.org>

Reply to: