Hi Jonathan, Jonathan Wiltshire, on 2024-08-10: > On Wed, Aug 07, 2024 at 07:57:03PM +0200, Étienne Mollier wrote: > > [ Reason ] > > xmedcon in bullseye is affected by CVE-2024-29421. It is, > > quoting the description: "vulnerable to Buffer Overflow via > > libs/dicom/basic.c which allows an attacker to execute arbitrary > > code". It is currently rated minor by the security team, hence > > following the proposed-update process instead of a security > > update. The issue is tracked in #1077369. > > Please go ahead. The package is on its way to hit bullseye. Thank you! Have a nice day, :) -- .''`. Étienne Mollier <emollier@debian.org> : :' : pgp: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da `. `' sent from /dev/pts/0, please excuse my verbosity `-
Attachment:
signature.asc
Description: PGP signature