package release.debian.org tags 958850 = stretch pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian stretch. Thanks for your contribution! Upload details ============== Package: gosa Version: 2.7.4+reloaded2-13+deb9u3 Explanation: replace (un)serialize with json_encode/json_decode to mitigate PHP object injection [CVE-2019-14466]