Bug#877043: stretch-pu: package weechat/1.6-1+deb9u2
Control: tags -1 + pending
Hi,
On Thu, 2017-09-28 at 07:53 +0200, Salvatore Bonaccorso wrote:
> Hi Adam,
>
> On Thu, Sep 28, 2017 at 06:43:59AM +0100, Adam D. Barratt wrote:
> > Control: tags -1 + confirmed
> >
> > On Thu, 2017-09-28 at 05:02 +0200, Salvatore Bonaccorso wrote:
> > > weechat in stretch is affected by CVE-2017-14727, tracked as
> > > #876553.
> > >
> > > > * logger: call strftime before replacing buffer local
> > > > variables
> > > > (CVE-2017-14727) (Closes: #876553)
> > >
> > > https://weechat.org/news/98/20170923-Version-1.9.1-security-relea
> > > se/
> > >
> > > Attached proposed debdiff for the stretch point release.
> > >
>
[...]
> > Please go ahead.
>
> Done,
Thanks. Flagged for acceptance.
Regards,
Adam
Reply to: