Bug#864804: CVE-2017-9604: Send Later with Delay bypasses OpenPGP
On Sat, Jun 17, 2017 at 11:00:26AM +0200, Sandro Knauß wrote:
> Hey,
>
> I backported the patch for jessie. I attached a debdiff and waiting for your
> response to upload.
Hi Sandro,
sorry for the late reply, I was on afk myself.
This is fairly obscure feature with IMO little practical impact and this
doesn't warrant a DSA on it's own. This can either be fixed via a point
update [1] or we can fix this along when there's a more severe kdepim
vulnerarability in the future.
Cheers,
Moritz
[1] https://www.debian.org/doc/manuals/developers-reference/ch05.html#upload-stable
Reply to: