Bug#1107856: bookworm-pu: package icu/72.1-3+deb12u1

To: Adrian Bunk <bunk@debian.org>, 1107856@bugs.debian.org
Subject: Bug#1107856: bookworm-pu: package icu/72.1-3+deb12u1
From: László Böszörményi (GCS) <gcs@debian.org>
Date: Mon, 16 Jun 2025 21:37:46 +0200
Message-id: <[🔎] CAKjSHr3=7-Fekxd3e3nUPfuHFzp_aUJBV2fUC0-fpzx90t+cpw@mail.gmail.com>
Reply-to: László Böszörményi (GCS) <gcs@debian.org>, 1107856@bugs.debian.org
In-reply-to: <[🔎] 175002857701.792445.12938157535897628053.reportbug@localhost>
References: <[🔎] 175002857701.792445.12938157535897628053.reportbug@localhost> <[🔎] 175002857701.792445.12938157535897628053.reportbug@localhost>

On Mon, Jun 16, 2025 at 1:05 AM Adrian Bunk <bunk@debian.org> wrote:
>   * CVE-2025-5222: Stack-based buffer overflow (Closes: #1106684)
>
> Tagged moreinfo, as question to the security team whether they want
> this in pu or as DSA.
 Being the maintainer I have three quick points to add. Thanks for the
update, it seems to be correct. Please note this is a workaround, a
fix for another issue and not the intended security update. I work on
three more security fixes of ICU for Trixie, it is currently in the
testing.

Regards,
Laszlo/GCS

Reply to:

References:
- Bug#1107856: bookworm-pu: package icu/72.1-3+deb12u1
  - From: Adrian Bunk <bunk@debian.org>

Prev by Date: Processed: unblock: eproject-el/1.5+git20180312.068218d-5
Next by Date: Bug#1107465: prerequest unblock: emacs-goodies-el/42.5
Previous by thread: Processed: bookworm-pu: package icu/72.1-3+deb12u1
Next by thread: Bug#1107856: bookworm-pu: package icu/72.1-3+deb12u1
Index(es):
- Date
- Thread