CVE-2024-9632 and xorg-server-1.20.11-1+deb11u14

To: debian-lts@lists.debian.org, Thorsten Alteholz <debian@alteholz.de>
Subject: CVE-2024-9632 and xorg-server-1.20.11-1+deb11u14
From: Chris Frey <cdfrey@foursquare.net>
Date: Tue, 29 Oct 2024 17:50:44 -0400
Message-id: <[🔎] ZyFYtK46R4stHDTm@foursquare.net>

I did a comparison between deb11u13 and deb11u14 and noticed that
there's an extra newline character in the debian/patches/series file,
which causes the last patch in the list to not be applied, at least
when using bullseye dpkg-source -x.

So I don't believe that deb11u14 actually fixes the bug.

- Chris

Reply to:

Follow-Ups:
- Re: CVE-2024-9632 and xorg-server-1.20.11-1+deb11u14
  - From: Chris Frey <cdfrey@foursquare.net>

Prev by Date: Re: CVE-2024-6602 & CVE-2024-6609 nss for debian/buster
Next by Date: Tool to check CVE database for triaging reconsiderations
Previous by thread: Re: CVE-2024-6602 & CVE-2024-6609 nss for debian/buster
Next by thread: Re: CVE-2024-9632 and xorg-server-1.20.11-1+deb11u14
Index(es):
- Date
- Thread