Bug#852818: unblock: python-oslo.middleware/3.19.0-3 CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware (#852742)

To: Thomas Goirand <zigo@debian.org>, 852818@bugs.debian.org
Subject: Bug#852818: unblock: python-oslo.middleware/3.19.0-3 CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware (#852742)
From: Niels Thykier <niels@thykier.net>
Date: Sat, 28 Jan 2017 09:54:00 +0000
Message-id: <[🔎] 60360de0-7bed-14ef-2639-8bd3e93a8392@thykier.net>
Reply-to: Niels Thykier <niels@thykier.net>, 852818@bugs.debian.org
In-reply-to: <[🔎] 20170127154935.27106.86221.reportbug@buzig2.mirantis.com>
References: <[🔎] 20170127154935.27106.86221.reportbug@buzig2.mirantis.com>

Control: tags -1 moreinfo

Thomas Goirand:
> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: unblock
> 
> Dear release team,
> 
> CVE-2017-2592 was reported against python-oslo.middleware/3.19.0-2. We need
> python-oslo.middleware/3.19.0-3 in Stretch fast.
> 
> Please override the urgency to 5 days, so that this CVE fix can migrate
> faster.
> 
> Cheers,
> 
> Thomas Goirand (zigo)
> 

The version has not been uploaded and accepted yet, so there is nothing
for us to do atm.

~Niels

Reply to:

References:
- Bug#852818: unblock: python-oslo.middleware/3.19.0-3 CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware (#852742)
  - From: Thomas Goirand <zigo@debian.org>

Prev by Date: Bug#851989: release.debian.org: de-branding Icedove, Thunderbird packages in Stretch?
Next by Date: Processed: Re: Bug#852818: unblock: python-oslo.middleware/3.19.0-3 CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware (#852742)
Previous by thread: Bug#852818: unblock: python-oslo.middleware/3.19.0-3 CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware (#852742)
Next by thread: Processed: Re: Bug#852818: unblock: python-oslo.middleware/3.19.0-3 CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware (#852742)
Index(es):
- Date
- Thread