Bug#912531: stretch-pu: package exiv2/0.25-3.1+deb9u2

To: Roberto C.Sánchez <roberto@debian.org>, 912531@bugs.debian.org
Subject: Bug#912531: stretch-pu: package exiv2/0.25-3.1+deb9u2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 31 Mar 2019 20:09:27 +0100
Message-id: <[🔎] 1554059367.2650.49.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 912531@bugs.debian.org
In-reply-to: <20181102010746.tvlwfw53uzmtyvoj@connexer.com>
References: <20181101032535.jdfq2xoyvhgqy5yh@connexer.com> <1541098253.2224.14.camel@adam-barratt.org.uk> <20181101032535.jdfq2xoyvhgqy5yh@connexer.com> <20181102010746.tvlwfw53uzmtyvoj@connexer.com> <20181101032535.jdfq2xoyvhgqy5yh@connexer.com>

On Thu, 2018-11-01 at 21:07 -0400, Roberto C.Sánchez wrote:
> On Thu, Nov 01, 2018 at 06:50:53PM +0000, Adam D. Barratt wrote:
> > Control: tags -1 + moreinfo
> > 
> > On Wed, 2018-10-31 at 23:25 -0400, Roberto C. Sanchez wrote:
> > > I have prepared an update for exiv2 in jessie (0.24-4.1+deb8u2)
> > > related to CVE-2018-16336 and also including a minor fix to the
> > > previous patch for CVE-2018-10958 and CVE-2018-10999.
> > 
> > The Security Tracker indicates that CVE-2018-16336 is as-yet
> > unfixed in
> > unstable; is that correct?
> > 
> 
> Hi Adam,
> 
> That is correct.  I completely overlooked it.  I will check with the
> maintainers about their plans for unstable.

Was there any progress there? The issue is still marked as affecting
unstable in the tracker.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#912531: stretch-pu: package exiv2/0.25-3.1+deb9u2
  - From: Roberto C. Sánchez <roberto@debian.org>

Prev by Date: Bug#923184: unblock: qgis/3.4.6+dfsg-1
Next by Date: security support in buster and the release notes
Previous by thread: Processed: Re: Bug#910805: stretch-pu: package dnsruby/1.54-2
Next by thread: Bug#912531: stretch-pu: package exiv2/0.25-3.1+deb9u2
Index(es):
- Date
- Thread