Bug#1013306: bullseye-pu: package libsdl2/2.0.14+dfsg2-3+deb11u1
Control: tags -1 + confirmed
On Tue, 2022-06-21 at 10:55 +0100, Simon McVittie wrote:
> Backport two out-of-bounds reads, one of which has a CVE ID,
> presumably
> because it could be an exploitable vulnerability for games that are
> willing to load untrusted graphics data.
>
> The security team marked the CVE as unimportant and didn't open a
> bug,
> so presumably they don't intend to do a DSA.
>
Please go ahead.
Regards,
Adam
Reply to: