[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1039708: bullseye-pu: package lua5.3/5.3.3-1.1+deb11u1

Control: tag -1 confirmed

On Wed, Jun 28, 2023 at 02:22:21PM +0200, Guilhem Moulin wrote:
> lua5.3=5.3.3-1.1 (buster, bullseye) is vulnerable to CVE-2019-6706 and
> CVE-2020-24370.  These were fixed in an a recent buster-security upload
> (cf. DLA-3469-1).  The Security Team didn't think a DSA was warranted
> for bullseye, and suggested to go via bullseye-pu instead.

Please go ahead.

Thanks,


-- 
Jonathan Wiltshire                                      jmw@debian.org
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51
ed25519/0x196418AAEB74C8A1: CA619D65A72A7BADFC96D280196418AAEB74C8A1
Reply to: