Bug#945944: stretch-pu: package ros-ros-comm/1.12.6-2

["Adam D. Barratt" <adam@adam-barratt.org.uk>]

Control: tags -1 + confirmed

On Sun, 2019-12-01 at 14:08 +0100, Jochen Sprickerhof wrote:
> The ros-ros-comm version in stretch is affected affected by
> CVE-2019-13566 which was flagged no-dsa by the security team. I
> propose the attached patch to fix the issue. Would you be fine with
> me uploading it?

Please go ahead.

> This is the same as #945896, just for stretch. I adopted the values
> as reportbug doesn't seem to support stretch-pu. Hope I did it right.

Really? Which version?

On buster, I get:

<quote>
What sort of request is this? (If none of these things mean anything to
you, or you are trying to report a bug in an existing package, please
press Enter to exit reportbug.)

1 binnmu      binNMU requests
2 britney     testing migration script bugs
3 buster-pu   buster proposed updates requests
4 other       None of the other options
5 rm          Stable/Testing removal requests
6 stretch-pu  stretch proposed updates requests
7 transition  transition tracking
8 unblock     unblock requests
</quote>

Regards,

Adam