[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1041475: bullseye-pu: package hnswlib/0.4.0-3+deb11u1



Hi Jonathan,

Jonathan Wiltshire, on 2023-07-23:
> On Wed, Jul 19, 2023 at 01:20:03PM +0200, Étienne Mollier wrote:
> > hnswlib is affected by CVE-2023-37365 marked no-dsa, documented
> > through the important bug #1041426.  Quoting the CVE for short:
> > hnswlib has a double free in init_index when the M argument is a
> > large integer.
> 
> Please go ahead.

I went ahead and received feedback that the package is accepted
in oldstable-proposed-updates->oldstable-new.  Thanks!

Have a nice day,  :)
-- 
  .''`.  Étienne Mollier <emollier@debian.org>
 : :' :  gpg: 8f91 b227 c7d6 f2b1 948c  8236 793c f67e 8f0d 11da
 `. `'   sent from /dev/pts/2, please excuse my verbosity
   `-    on air: Liquid Tension Experiment - Acid rain

Attachment: signature.asc
Description: PGP signature


Reply to: