Bug#906258: stretch-pu: package yubico-piv-tool/1.4.2-2
Control: tag -1 + moreinfo
Control: tag -1 - security
On 08/16/2018 10:01 AM, Nicolas Braud-Santoni wrote:
> Package: release.debian.org
> Severity: normal
> Tags: stretch security
> User: release.debian.org@packages.debian.org
> Usertags: pu
> Control: block 906128 by -1
>
> Hi,
>
> I would like to upload a fix for #906128 (CVE-2018-14779 and CVE-2018-14780)
> to stretch-pu; I already backported the fix from upstream to v1.4.2, and my
> work is in the branch debian/stretch of the packaging repository:
>
> https://salsa.debian.org/auth-team/yubico-piv-tool.git
>
> #906128 was marked by the security team as a minor issue not requiring a DSA
> and an upload to stretch-security.
This isn't fixed in sid.
Cheers,
Julien
Reply to: