Bug#988455: buster-pu: package velocity/1.7-5+deb10u1
Adam D. Barratt wrote:
> > Please consider velocity (1.7-5+deb10u1) for buster:
> >
> > velocity (1.7-5+deb10u1) buster; urgency=medium
> > .
> > * CVE-2020-13936: Prevent a potential arbitrary code execution vulnerability
> > that can be exploited by applications that allow untrusted users to
> > upload/modify Velocity templates. (Closes: #985220)
>
> Please go ahead.
Thanks — I've uploaded velocity_1.7-5+deb10u1_amd64.changes for this.
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` lamby@debian.org 🍥 chris-lamb.co.uk
`-
Reply to: