Package: libqt5core5a Version: 5.7.1+dfsg-3+deb9u1 Severity: normal Tags: security X-Debbugs-CC: secure-testing-team@lists.alioth.debian.org --- Please enter the report below this line. --- I was aware that Qt 5.6.3 (LTS) has recently reached end-of-support (2019/03/16) but I hadn't stopped to think that 5.7.1 is well past the end-point for non-Long Term Support upstream (2017/06/16) - that being the case and for Debian "Stretch" being the current *stable* version until "Buster" gets out the door in the next few months, isn't it a good idea, at least from a security and safety point of view, for Debian to upgrade to a version, such as Qt 5.9.7 which has long-term support from Qt until 2020/05/31...? --- System information. --- Architecture: Kernel: Linux 4.9.0-8-amd64 Debian Release: 9.9 500 stable security.debian.org 500 stable ftp.uk.debian.org 500 stable apt.spideroak.com 100 stretch-backports deb.debian.org --- Package information. --- Depends (Version) | Installed =======================================-+-============== libc6 (>= 2.14) | 2.24-11+deb9u4 libdouble-conversion1 (>= 2.0.0) | 2.0.1-4 libgcc1 (>= 1:3.4) | 1:6.3.0-18+deb9u1 libglib2.0-0 (>= 2.22.0) | 2.50.3-2 libicu57 (>= 57.1-1~) | 57.1-6+deb9u2 libpcre16-3 (>= 2:8.35-4) | 2:8.39-3 libstdc++6 (>= 5) | 6.3.0-18+deb9u1 zlib1g (>= 1:1.1.4) | 1:1.2.8.dfsg-5 Recommends (Version) | Installed ===================================-+-=========== qttranslations5-l10n | 5.7.1~20161021-1 Suggests (Version) | Installed =======================-+-=========== libthai0 | 0.1.26-1 -- To mitigate against EFAIL attacks email messages will be handled only as plain text, please do not send emails in an HTML form to this recipient!
Attachment:
signature.asc
Description: OpenPGP digital signature