Control: tags -1 + confirmed
On Tue, 2015-06-09 at 19:46 +0200, Philip Rinn wrote:
rawtherapee is affected by the security issue CVE-2015-3885[1]. It's
marked no-
das that's why I want to coordinate the update with you.
I attached the debdiff.
+rawtherapee (4.2-1+deb8u1) jessie-security; urgency=high
+
+ * Add patch debian/patches/02-fix_CVE-2015-3885.patch:
+ - Fix dcraw imput sanitization errors (CVE-2015-3885)
Just "jessie" as the distribution, please, as this isn't going via the
security archive.
With the above change, please go ahead.