Re: Sponsoring request: security fix in dcmtk for CVE2015-8979
On Dec/25, Gert Wollny wrote:
> because of #796095 <https://bugs.debian.org/796095> I can not upload
> to security-master as a DM, therefore I ask for sponsering of package
> dcmtk-3.6.0 in jessie fixing CVE-2015-8979
> (#848830). <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848830>
>
> Because the git packaging history doesn't go back to the version to be
> fixed I've prepared the new upload on mentors:
>
> https://mentors.debian.net/package/dcmtk
>
> Alternatively, one can download the package with dget using this command:
>
> dget -x
> https://mentors.debian.net/debian/pool/main/d/dcmtk/dcmtk_3.6.0-15+deb8u1.dsc
>
> Please prepare a binary upload with source code included (-sa) and
> upload it to security-master. Also note that the package as is
> doesn't support parallel builds.
I will take care of building and uploading this.
Cheers,
--Seb
Reply to: