Control: tags -1 + confirmed On Tue, 2019-10-29 at 15:21 +0100, Dylan Aïssi wrote: > Upstream has fixed CVE-2019-9656, this CVE is non-dsa. I already > backported patches to unstable (#924350) and now I would like to fix > the Buster version. Please find attached a debdiff. > Please go ahead. Regards, Adam