Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1

To: David Prévot <taffit@debian.org>, 1034714@bugs.debian.org
Subject: Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 23 Apr 2023 12:33:12 +0100
Message-id: <[🔎] 9bb915bbe61ef3ac32079d8bf034213b9cb522f9.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1034714@bugs.debian.org
In-reply-to: <[🔎] ZEO+AcwNBnKDhhRi@persil.tilapin.org>
References: <[🔎] ZEO+AcwNBnKDhhRi@persil.tilapin.org> <[🔎] ZEO+AcwNBnKDhhRi@persil.tilapin.org>

Control: tags -1 + confirmed

On Sat, 2023-04-22 at 12:59 +0200, David Prévot wrote:
> Please note that this request is very similar to #1034713 for
> php-guzzlehttp-psr7/1.7.0-1+deb11u2 (even the CVE ID is the same).
> 
> [ Reason ]
> I’d like to fix an improper input validation [CVE-2023-29197]
> filed as #1034597. The security team reviewed this bug filed
> with a non-RC severity, so I assume they don’t expect to release
> a DSA for it (as for the other php-guzzlehttp-psr7 issue),
> anyway the team is X-D-Cc.
> 

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1
  - From: David Prévot <taffit@debian.org>

Prev by Date: Processed: Re: Bug#1034713: bullseye-pu: package php-guzzlehttp-psr7/1.7.0-1+deb11u2
Next by Date: Processed: Re: Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1
Previous by thread: Bug#1034714: [pkg-php-pear] Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1
Next by thread: Processed: Re: Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1
Index(es):
- Date
- Thread