Bug#988850: buster-pu: package thunar/1.8.17-1

To: Yves-Alexis Perez <corsac@debian.org>, 988850@bugs.debian.org
Subject: Bug#988850: buster-pu: package thunar/1.8.17-1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Fri, 05 Aug 2022 20:15:23 +0100
Message-id: <[🔎] 56c5d3ac43af7293d7c35bd69fbaf4ca36094ce3.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 988850@bugs.debian.org
In-reply-to: <162151710265.646640.5790345330233042524.reportbug@scapa>
References: <162151710265.646640.5790345330233042524.reportbug@scapa> <162151710265.646640.5790345330233042524.reportbug@scapa>

On Thu, 2021-05-20 at 15:25 +0200, Yves-Alexis Perez wrote:
> this is a pre-approval request for updating Thunar in stable, from
> 1.8.4
> to 1.8.17.
> 
> The context is the recently found vulnerability CVE-2021-32563
> (#988394), which has been fixed in 1.8.17.
> 
> With my security team hat on, I don't think it really desserves a DSA
> with an isolated fix, but (with my Xfce maintainer hat on) I think it
> would make sense to fix it in a point update, along with the various
> bugfixes and translation updates that Thunar had since the freeze.
> 

Apologies for the long delay in this getting a response.

We're in the process of preparing the final point release for buster,
as support transitions over to the LTS team.

Is this still something you'd be interested in fixing in buster?

Regards,

Adam

Reply to:

Prev by Date: Bug#1010060: buster-pu: package mutt/1.10.1-2.1+deb10u6
Next by Date: Bug#975269: marked as done (buster-pu: package linux/TBD - arm64 stolen time support)
Previous by thread: Bug#1008578: buster-pu: golang-github-russellhaering-goxmldsig/0.0~git20170911.b7efc62-1+deb10u1
Next by thread: Bug#975269: marked as done (buster-pu: package linux/TBD - arm64 stolen time support)
Index(es):
- Date
- Thread