Re: libsdl2-image security issues in testing

To: Hugo Lefeuvre <hle@debian.org>
Cc: debian-lts@lists.debian.org, Debian SDL packages maintainers <pkg-sdl-maintainers@lists.alioth.debian.org>, "Manuel A. Fernandez Montecelo" <mafm@debian.org>
Subject: Re: libsdl2-image security issues in testing
From: Felix Geyer <fgeyer@debian.org>
Date: Mon, 22 Jul 2019 23:06:16 +0200
Message-id: <[🔎] 8ac51ad9-715c-faf1-2c56-1b1108a43304@debian.org>
In-reply-to: <[🔎] 20190721163023.GA1252@behemoth.owl.eu.com.local>
References: <[🔎] 20190721163023.GA1252@behemoth.owl.eu.com.local>

Hi Hugo,

On 21.07.19 18:30, Hugo Lefeuvre wrote:

Dear libsdl2-image maintainers,

I have prepared a jessie (LTS) update addressing libsdl2-image's current
security issues. I will coordinate with the security team to possibly fix
them in a future stretch/buster point update.

Are you planning to address these issues in testing?  Packaging upstream's
latest 2.0.5 release should be sufficient, but they can also be addressed
with more targeted fixes.

I can provide some help if needed.


Thanks for your work!

I'm preparing a 2.0.5 upload right now.
As far as I can tell all CVEs in the tracker are fixed with 2.0.5.
Do you agree?

Cheers,
Felix

Reply to:

Follow-Ups:
- Re: libsdl2-image security issues in testing
  - From: Hugo Lefeuvre <hle@debian.org>

References:
- libsdl2-image security issues in testing
  - From: Hugo Lefeuvre <hle@debian.org>

Prev by Date: Re: (semi-)automatic unclaim of packages with more than 2 weeks of inactivity
Next by Date: Re: libsdl2-image security issues in testing
Previous by thread: libsdl2-image security issues in testing
Next by thread: Re: libsdl2-image security issues in testing
Index(es):
- Date
- Thread