Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4

To: Roland Rosenfeld <roland@spinnaker.de>, 988974@bugs.debian.org
Subject: Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 29 May 2021 15:07:22 +0100
Message-id: <[🔎] 8030c4c0cba5045aec7c27ec64cbec61ea8b9d54.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 988974@bugs.debian.org
In-reply-to: <[🔎] 20210522094747.GA4779@dinghy.sail.spinnaker.de>
References: <[🔎] 20210522094747.GA4779@dinghy.sail.spinnaker.de> <[🔎] 20210522094747.GA4779@dinghy.sail.spinnaker.de>

Control: tags -1 + confirmed

On Sat, 2021-05-22 at 11:47 +0200, Roland Rosenfeld wrote:
> I prepared an update for fig2dev 1:3.2.7a-5+deb10u3 to deb10u4, which
> in the first time fixes CVE-2021-3561 (the security team doesn't
> intend to create a DSA but redirected me here).
> 
> Additionally it fixes four other buffer overflows, that are all fixed
> upstream and I backported the fixes.
> 

I'm assuming that "fixed upstream" here implies that the fixes are also
in unstable? If so, please go ahead.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4
  - From: Roland Rosenfeld <roland@debian.org>

References:
- Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4
  - From: Roland Rosenfeld <roland@spinnaker.de>

Prev by Date: Processed: Re: Bug#989132: buster-pu: package wml/2.12.2~ds1-3~deb10u1
Next by Date: Processed: Re: Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4
Previous by thread: Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4
Next by thread: Bug#988974: buster-pu: package fig2dev/1:3.2.7a-5+deb10u4
Index(es):
- Date
- Thread