Bug#1065266: bullseye-pu: package php-phpseclib/2.0.30-2+deb11u2

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1065266: bullseye-pu: package php-phpseclib/2.0.30-2+deb11u2
From: David Prévot <taffit@debian.org>
Date: Sat, 2 Mar 2024 11:22:22 +0100
Message-id: <[🔎] ZeL93knaaSQg4JiI@persil.tilapin.org>
Reply-to: David Prévot <taffit@debian.org>, 1065266@bugs.debian.org

Package: release.debian.org
Severity: normal
Tags: bullseye
X-Debbugs-Cc: php-phpseclib@packages.debian.org, team@security.debian.org
Control: affects -1 + src:php-phpseclib
User: release.debian.org@packages.debian.org
Usertags: pu

Hi,

This issue is similar to #1065263 for bookworm

I’d like to see CVE-2024-27354 and CVE-2024-27355 addressed in the next
point release. We agreed with the security team that these issues are
not worth a DSA.

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in oldstable
  [x] the issue is verified as fixed in unstable

TIA for considering.

Cheers,

taffit

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Processed: bullseye-pu: package php-phpseclib/2.0.30-2+deb11u2
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>
- Bug#1065266: bullseye-pu: package php-phpseclib/2.0.30-2+deb11u2
  - From: David Prévot <taffit@debian.org>

Prev by Date: Bug#1065264: bookworm-pu: package phpseclib/1.0.20-1+deb12u2
Next by Date: Processed: bullseye-pu: package php-phpseclib/2.0.30-2+deb11u2
Previous by thread: Processed: phpseclib 1.0.20-1+deb12u2 flagged for acceptance
Next by thread: Processed: bullseye-pu: package php-phpseclib/2.0.30-2+deb11u2
Index(es):
- Date
- Thread