Bug#933175: buster-pu: package fig2dev/1:3.2.7a-5

To: Roland Rosenfeld <roland@debian.org>, 933175@bugs.debian.org
Subject: Bug#933175: buster-pu: package fig2dev/1:3.2.7a-5
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 20 Aug 2019 21:37:07 +0100
Message-id: <[🔎] af53b32e459e2bd35427228b50b716819a603166.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 933175@bugs.debian.org
In-reply-to: <20190727093043.GA4371@dinghy.sail.spinnaker.de>
References: <20190727093043.GA4371@dinghy.sail.spinnaker.de> <20190727093043.GA4371@dinghy.sail.spinnaker.de>

Control: tags -1 + confirmed

On Sat, 2019-07-27 at 11:30 +0200, Roland Rosenfeld wrote:
> This fixes CVE-2019-14275 in buster.  Since this is tagged
> "unimportant" by the security team on
> https://security-tracker.debian.org/tracker/CVE-2019-14275 they won't
> publish a DSA, so I tend to send this into the next point release of
> buster.
> 
> Attached you'll find the diff agains 3.2.7a-5.  The patch is a little
> longer, because I included the test code to check for this
> vulnerability and code for the salsa CI pipeline.

Please go ahead.

Regards,

Adam

Reply to:

Prev by Date: Bug#933147: buster-pu: package libsdl2-image/2.0.4+dfsg1+deb10u1
Next by Date: Processed: Re: Bug#933147: buster-pu: package libsdl2-image/2.0.4+dfsg1+deb10u1
Previous by thread: Processed: asterisk 16.2.1~dfsg-1+deb10u1 flagged for acceptance
Next by thread: Processed: Re: Bug#933175: buster-pu: package fig2dev/1:3.2.7a-5
Index(es):
- Date
- Thread