Bug#1070478: bookworm-pu: package tryton-server/tryton-server_6.0.29-2+deb12u2

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Cc: 1070478@bugs.debian.org
Subject: Bug#1070478: bookworm-pu: package tryton-server/tryton-server_6.0.29-2+deb12u2
From: Mathias Behrle <mbehrle@debian.org>
Date: Sun, 16 Jun 2024 20:58:16 +0200
Message-id: <[🔎] 20240616205816.2c0f14e4@monsterix.mbehrle.de>
Reply-to: Mathias Behrle <mbehrle@debian.org>, 1070478@bugs.debian.org
In-reply-to: <[🔎] 490bcefeb761a8fd917166383aa8ec33419c8c26.camel@adam-barratt.org.uk>
References: <20240506103502.1ed277de@monsterix.mbehrle.de> <[🔎] 490bcefeb761a8fd917166383aa8ec33419c8c26.camel@adam-barratt.org.uk> <20240506103502.1ed277de@monsterix.mbehrle.de>

* Adam D. Barratt: " Re: Bug#1070478: bookworm-pu: package
  tryton-server/tryton-server_6.0.29-2+deb12u2" (Sat, 15 Jun 2024 16:16:32
  +0100):

> Control: tags -1 + confirmed
> 
> On Mon, 2024-05-06 at 10:35 +0200, Mathias Behrle wrote:
> > Backport the patch to fix the vulnerabilty to zip bomb
> > attacks via decoded gzip content from unauthenticated users.
> > https://discuss.tryton.org/t/security-release-for-issue-13142/7196  
> 
> Please go ahead.
> 
> Regards,
> 
> Adam

Thanks, uploaded.

Cheers

-- 

    Mathias Behrle
    PGP/GnuPG key availabable from any keyserver, ID: 0xD6D09BE48405BBF6
    AC29 7E5C 46B9 D0B6 1C71  7681 D6D0 9BE4 8405 BBF6

Reply to:

References:
- Bug#1070478: bookworm-pu: package tryton-server/tryton-server_6.0.29-2+deb12u2
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Bug#1073519: bullseye-pu: cups/2.3.3op2-3+deb11u7
Next by Date: Bug#1070484: bookworm-pu: package tryton-client/tryton-client_6.0.26-1+deb12u1
Previous by thread: Processed: Re: Bug#1070478: bookworm-pu: package tryton-server/tryton-server_6.0.29-2+deb12u2
Next by thread: Bug#1070484: bookworm-pu: package tryton-client/tryton-client_6.0.26-1+deb12u1
Index(es):
- Date
- Thread