On Sat, 2020-04-25 at 20:34 +0100, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Thu, 2019-12-26 at 12:31 +0000, Phil Wyett wrote: > > Attached is a debdiff that resolves CVE in package 'filezilla' on > > > buster. > > > > > > filezilla (3.39.0-2+deb10u1) buster-security; urgency=high > > > > > > * Team Upload > > > * Added: 02_untrusted_search_path.patch - CVE-2019-5429. > > > (Closes: > > > #928282) > > > > > > -- Phil Wyett <philip.wyett@kathenas.org> Wed, 18 Dec 2019 > > > 20:25:54 > > > 0000 > > > > > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928282 > > > https://security-tracker.debian.org/tracker/CVE-2019-5429 > > > > > > Regards > > > > > > Phil > > > > > > > Hi, > > > > Updated debdiff. Changed from Team to NMU. > > > > Apologies for the delay. Please go ahead. > > Regards, > > Adam > Hi, I am neither DM or DD, so this upload will need to be done by someone carrying the appropriate access and signing ability. Files related to update are at link below. http://development.kathenas.org/debian/versions/buster_updates/filezilla/ Regards Phil -- *** Playing the game for the games sake. *** WWW: https://kathenas.org Twitter: @kathenasorg IRC: kathenas GPG: 724AA9B52F024C8B
Attachment:
signature.asc
Description: This is a digitally signed message part