Bug#1006010: bullseye-pu: package php-crypt-gpg/1.6.4-2+deb11u1

To: Guilhem Moulin <guilhem@debian.org>, 1006010@bugs.debian.org
Subject: Bug#1006010: bullseye-pu: package php-crypt-gpg/1.6.4-2+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 15 Mar 2022 20:34:22 +0000
Message-id: <[🔎] d39b87690abe069154b589da176a40466313016d.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1006010@bugs.debian.org
In-reply-to: <YhAUAbZiJ4LDxwcJ@debian.org>
References: <YhAUAbZiJ4LDxwcJ@debian.org> <YhAUAbZiJ4LDxwcJ@debian.org>

Control: tags -1 + confirmed

On Fri, 2022-02-18 at 22:47 +0100, Guilhem Moulin wrote:
> CVE-2022-24953: Crypt_GPG <1.6.7 does not prevent additional options
> in
> GPG calls, which presents a risk for certain environments and GPG
> versions.
> 

Please go ahead; thanks.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#1006010: bullseye-pu: package php-crypt-gpg/1.6.4-2+deb11u1
Next by Date: Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
Previous by thread: Bug#1005949: bullseye-pu: package glibc/2.31-13+deb11u3
Next by thread: Processed: Re: Bug#1006010: bullseye-pu: package php-crypt-gpg/1.6.4-2+deb11u1
Index(es):
- Date
- Thread