Re: CVE-2021-32642 in radsecproxy

To: "Sven Hartge" <sven@svenhartge.de>, debian-lts@lists.debian.org
Subject: Re: CVE-2021-32642 in radsecproxy
From: "Chris Lamb" <lamby@debian.org>
Date: Thu, 27 May 2021 10:18:00 +0100
Message-id: <[🔎] 89091d8c-3557-4bfc-b0bf-4df973a65db7@www.fastmail.com>
In-reply-to: <[🔎] 5h9q6f5kvq6v8@mids.svenhartge.de>
References: <[🔎] 5h9q6f5kvq6v8@mids.svenhartge.de>

Hi Sven,

> there is a (very) minor security flaw in the radsecproxy package.
>
> I have prepared updated packages, available via
> https://mentors.debian.net/debian/pool/main/r/radsecproxy/radsecproxy_1.6.8-1+deb9u1.dsc
> for you.

Thanks for preparing a package and, at a quick glance, I would be
happy to upload it. Just to 100% check though:  you are not in a
position to upload it, create and publish a DLA, update the website,
etc.? (Just avoiding duplicate work.)


Regards,

--
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org 🍥 chris-lamb.co.uk
       `-

Reply to:

Follow-Ups:
- Re: CVE-2021-32642 in radsecproxy
  - From: Sven Hartge <sven@svenhartge.de>

References:
- CVE-2021-32642 in radsecproxy
  - From: Sven Hartge <sven@svenhartge.de>

Prev by Date: Re: CVE-2021-30130 php-phpseclib and phpseclib
Next by Date: Re: CVE-2021-32642 in radsecproxy
Previous by thread: CVE-2021-32642 in radsecproxy
Next by thread: Re: CVE-2021-32642 in radsecproxy
Index(es):
- Date
- Thread