Bug#1033653: bullseye-pu: package lemonldap-ng/2.0.11+ds-4+deb11u

To: Yadd <yadd@debian.org>, 1033653@bugs.debian.org
Subject: Bug#1033653: bullseye-pu: package lemonldap-ng/2.0.11+ds-4+deb11u
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 01 Apr 2023 20:33:44 +0100
Message-id: <[🔎] be65ade4e285e006ab999692c2e01b073d112b18.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1033653@bugs.debian.org
In-reply-to: <168009279096.457557.16090413784097835959.reportbug@debian007.xnr.fr>
References: <168009279096.457557.16090413784097835959.reportbug@debian007.xnr.fr> <168009279096.457557.16090413784097835959.reportbug@debian007.xnr.fr>

Control: tags -1 + confirmed

On Wed, 2023-03-29 at 16:26 +0400, Yadd wrote:
> lemonldap-ng is vulnarable to a second factor bypass when used with
> an
> "AuthBasic handler" (generally used for non-browser apps).
> 
[...]
> I didn't pushed yet the already accepted patch for deb11u3
> (#1030598).
> Maybe we could join and push directly deb11u4 into Bullseye.
> 

Apparently you also merged the bug reports, thus removing the
indication that the previous update had already been approved. In
future, please don't do that, it makes the tracking a little more
confusing.

Please go ahead.

Regards,

Adam

Reply to:

Prev by Date: Bug#1032614: ddcutil: pre-approval request ddcutil-1.4.2-1 fixes bug #1031259
Next by Date: Processed: Re: unblock: lazarus/2.2.6+dfsg1-1
Previous by thread: Bug#1032614: ddcutil: pre-approval request ddcutil-1.4.2-1 fixes bug #1031259
Next by thread: Processed: Re: Bug#1033653: bullseye-pu: package lemonldap-ng/2.0.11+ds-4+deb11u
Index(es):
- Date
- Thread