Bug#962068: stretch-pu: package dbus/1.10.30-0+deb9u1

To: Simon McVittie <smcv@debian.org>, 962068@bugs.debian.org
Cc: kibi@debian.org, debian-boot@lists.debian.org
Subject: Bug#962068: stretch-pu: package dbus/1.10.30-0+deb9u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 20 Jun 2020 20:29:00 +0100
Message-id: <[🔎] 4353d802ea4a3dc19e84b2aae44654ef0fa15f89.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 962068@bugs.debian.org
In-reply-to: <[🔎] 20200602203003.GA109162@espresso.pseudorandom.co.uk>
References: <[🔎] 20200602203003.GA109162@espresso.pseudorandom.co.uk> <[🔎] 20200602203003.GA109162@espresso.pseudorandom.co.uk>

Control: tags -1 + confirmed d-i

On Tue, 2020-06-02 at 21:30 +0100, Simon McVittie wrote:
> dbus 1.10.30 fixes a local denial of service vulnerability for which
> the Security Team have indicated they do not intend to issue a DSA
> (the same one as 1.12.18).
> 
> If possible I would like to continue to fix dbus issues in stretch
> via new upstream releases; this one only contains the CVE fix, plus
> its regression test and the usual Autotools noise.

I suspect this will be the last such update before stretch moves to
LTS, but that seems fair.

This will need the usual KiBi ack, so tagging and CCing.

Regards,

Adam

Reply to:

References:
- Bug#962068: stretch-pu: package dbus/1.10.30-0+deb9u1
  - From: Simon McVittie <smcv@debian.org>

Prev by Date: Bug#962067: buster-pu: package dbus/1.12.18-0+deb10u1
Next by Date: Processed: Re: Bug#962068: stretch-pu: package dbus/1.10.30-0+deb9u1
Previous by thread: Bug#962068: stretch-pu: package dbus/1.10.30-0+deb9u1
Next by thread: Processed: Re: Bug#962068: stretch-pu: package dbus/1.10.30-0+deb9u1
Index(es):
- Date
- Thread