Hi Jonathan, Jonathan Wiltshire, on 2023-07-23: > On Wed, Jul 19, 2023 at 01:20:03PM +0200, Étienne Mollier wrote: > > hnswlib is affected by CVE-2023-37365 marked no-dsa, documented > > through the important bug #1041426. Quoting the CVE for short: > > hnswlib has a double free in init_index when the M argument is a > > large integer. > > Please go ahead. I went ahead and received feedback that the package is accepted in oldstable-proposed-updates->oldstable-new. Thanks! Have a nice day, :) -- .''`. Étienne Mollier <emollier@debian.org> : :' : gpg: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da `. `' sent from /dev/pts/2, please excuse my verbosity `- on air: Liquid Tension Experiment - Acid rain
Attachment:
signature.asc
Description: PGP signature