Bug#877045: jessie-pu: package weechat/1.0.1-1+deb8u2
On Thu, Sep 28, 2017 at 06:44:28AM +0100, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
>
> On Thu, 2017-09-28 at 05:15 +0200, Salvatore Bonaccorso wrote:
> > weechat in jessie is affected by CVE-2017-14727, tracked as #876553.
> >
> > > * logger: call strftime before replacing buffer local variables
> > > (CVE-2017-14727) (Closes: #876553)
> >
> > https://weechat.org/news/98/20170923-Version-1.9.1-security-release/
> >
>
> Please go ahead.
Thank you, uploaded.
Salvatore
Reply to: