Re: CVE-2020-10938/graphicsmagick and additional upstream change

To: Roberto C. Sánchez <roberto@debian.org>, debian-lts@lists.debian.org, team@security.debian.org
Subject: Re: CVE-2020-10938/graphicsmagick and additional upstream change
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Mon, 13 Apr 2020 15:43:04 +0200
Message-id: <[🔎] 20200413134304.GA1737144@pisco.westfalen.local>
In-reply-to: <20200330142635.GG22572@connexer.com>
References: <20200330142635.GG22572@connexer.com>

On Mon, Mar 30, 2020 at 10:26:35AM -0400, Roberto C. Sánchez wrote:
>  2. Leave the change set intact with both functional changes, and:
>     a. mention only CVE-2020-10938 in debian/changelog and the
>        associated advisories

I think that one makes the most sense, it's common that related changes
get cherrypicked alongside after all.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: CVE-2020-10938/graphicsmagick and additional upstream change
  - From: Roberto C. Sánchez <roberto@debian.org>

Prev by Date: (E)LTS report for March
Next by Date: Re: CVE-2020-10938/graphicsmagick and additional upstream change
Previous by thread: (E)LTS report for March
Next by thread: Re: CVE-2020-10938/graphicsmagick and additional upstream change
Index(es):
- Date
- Thread