Control: tags -1 + confirmed On Sat, 2022-02-26 at 10:54 +0000, Thorsten Alteholz wrote: > The attached debdiff for htmldoc fixes CVE-2022-0534, CVE-2021-43579 > and > CVE-2021-40985 in Buster. These CVEs are marked as uninportant by > the > security team, yet they are bugs. CVE-2021-43579 even has the > possibility > of remote code execution. > Please go ahead. Regards, Adam