Bug#970096: buster-pu: package libdbi-perl/1.642-1+deb10u1
Le 17/09/2020 à 21:26, Adam D. Barratt a écrit :
> Control: tags -1 + confirmed
>
> On Sat, 2020-09-12 at 08:50 +0200, Xavier wrote:
>>
>
> +libdbi-perl (1.642-1+deb10u1) buster; urgency=medium
> +
> + * Fix memory corruption in XS functions when Perl stack is reallocated
> + (Closes: CVE-2020-14392)
> + * Fix a buffer overflow on an overlong DBD class name
> + (Closes: CVE-2020-14393)
> +
> + -- Xavier Guimard <yadd@debian.org> Thu, 10 Sep 2020 10:04:13 +0200
>
> Please go ahead.
>
> Regards,
>
> Adam
Hi,
I'm going to try to add also this patch (for CVE-2019-20919:
https://github.com/perl5-dbi/dbi/commit/eca7d7c8f
I'll push a new debdiff after tests
Cheers,
Xavier
Reply to: