Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2

To: László Böszörményi <gcs@debian.org>, 906857@bugs.debian.org
Subject: Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 26 Aug 2018 14:54:38 +0100
Message-id: <[🔎] f9448e9c25337ef12df2ff06bab16e57@mail.adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 906857@bugs.debian.org
In-reply-to: <[🔎] CAKjSHr1r2X_ChRe4Am8Nwbn0LyVm_hQsyAbzQDM8-GBxD1fqFQ@mail.gmail.com>
References: <[🔎] CAKjSHr1r2X_ChRe4Am8Nwbn0LyVm_hQsyAbzQDM8-GBxD1fqFQ@mail.gmail.com> <[🔎] CAKjSHr1r2X_ChRe4Am8Nwbn0LyVm_hQsyAbzQDM8-GBxD1fqFQ@mail.gmail.com>

Control: tags -1 + confirmed

On 2018-08-21 19:07, László Böszörményi wrote:

There was a security issue in FUSE (Filesystem in Userspace),
CVE-2018-10906 which was fixed soon. Unfortunately it caused a
regression, autofs and FAT filesystems can not be mounted anymore[1].
Upstream patched these upstream and the fixes were uploaded to Sid and
migrated to Buster.
After talking with the Security Team they noted this is not severe
enough to release the regression fix by them. Hence I ask for
permission of this PU, which whitelist the mentioned filesystems for
Stretch as well.


Please go ahead.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2
  - From: László Böszörményi (GCS) <gcs@debian.org>

References:
- Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2
  - From: László Böszörményi (GCS) <gcs@debian.org>

Prev by Date: Bug#891801: stretch-pu: package unbound/1.6.0-3+deb9u2
Next by Date: Processed: Re: Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2
Previous by thread: Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2
Next by thread: Bug#906857: stretch-pu: package fuse/2.9.7-1+deb9u2
Index(es):
- Date
- Thread