Re: mumble package / CVE-2018-20743

To: Abhijith PA <abhijith@disroot.org>
Cc: Debian LTS <debian-lts@lists.debian.org>
Subject: Re: mumble package / CVE-2018-20743
From: Brian May <bam@debian.org>
Date: Thu, 07 May 2020 07:27:12 +1000
Message-id: <[🔎] 87lfm4daa7.fsf@silverfish.pri>
In-reply-to: <[🔎] c2a4ae40-66b8-5d7b-a8e9-f181895ace67@disroot.org>
References: <[🔎] 87tv0ucaww.fsf@silverfish.pri> <[🔎] c2a4ae40-66b8-5d7b-a8e9-f181895ace67@disroot.org>

Abhijith PA <abhijith@disroot.org> writes:

>> Unfortunately, I can't find any record of these discussions - in order
>> to reduce duplicated work - is it possible you could please summarise
>> here on debian-lts?
>
> I believe its a severe issue thus initiated discussion privately with
> team@security.debian.org

I think, like it or not, details were already publicly available in the
referenced github issue. From comment posted on 1st March. There is
probably no point trying to keep this secret.
-- 
Brian May <bam@debian.org>

Reply to:

References:
- mumble package / CVE-2018-20743
  - From: Brian May <brian@linuxpenguins.xyz>
- Re: mumble package / CVE-2018-20743
  - From: Abhijith PA <abhijith@disroot.org>

Prev by Date: Re: mumble package / CVE-2018-20743
Next by Date: Refreshing mysql-connector-java
Previous by thread: Re: mumble package / CVE-2018-20743
Next by thread: Refreshing mysql-connector-java
Index(es):
- Date
- Thread