Bug#1059289: bullseye-pu: package spip/3.2.11-3+deb11u10

To: David Prévot <taffit@debian.org>, 1059289@bugs.debian.org
Subject: Bug#1059289: bullseye-pu: package spip/3.2.11-3+deb11u10
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 30 Dec 2023 12:07:00 +0100
Message-id: <[🔎] ZY_51DDqILKjN_Zv@eldamar.lan>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 1059289@bugs.debian.org
In-reply-to: <[🔎] ZYV_ZGbYyIySaIdM@persil.tilapin.org>
References: <[🔎] ZYV_ZGbYyIySaIdM@persil.tilapin.org> <[🔎] ZYV_ZGbYyIySaIdM@persil.tilapin.org>

Hi,

On Fri, Dec 22, 2023 at 01:21:56PM +0100, David Prévot wrote:
> Package: release.debian.org
> Severity: normal
> Tags: bullseye
> User: release.debian.org@packages.debian.org
> Usertags: pu
> X-Debbugs-Cc: spip@packages.debian.org, team@security.debian.org
> Control: affects -1 + src:spip
> 
> Another upstream release fixed a security (XSS) issue. The last two
> updates of this kind didn’t warrant a DSA, so I guess this one will not
> warrant one either (security team X-D-CCed in case I’m wrong).

To confirm, from security team perspective, this does not warrant a
DSA and can be fixed in the upcoming point release.

Regards,
Salvatore

Reply to:

References:
- Bug#1059289: bullseye-pu: package spip/3.2.11-3+deb11u10
  - From: David Prévot <taffit@debian.org>

Prev by Date: Bug#1059696: bookworm-pu: package mate-utils/1.26.0-1+deb12u1
Next by Date: Bug#1059291: bookworm-pu: package spip/4.1.9+dfsg-1+deb12u3
Previous by thread: Bug#1059289: bullseye-pu: package spip/3.2.11-3+deb11u10
Next by thread: Bug#1059291: bookworm-pu: package spip/4.1.9+dfsg-1+deb12u3
Index(es):
- Date
- Thread