On 29.01.2025 4:16 PM, Roberto C. Sánchez wrote:
Yes, it still means that. The minizip binary package you are seeing comes from a different source package, also called minizip: https://packages.debian.org/source/bookworm/minizip
Aha! Got it :-)And there are no binary components in Debian based on vulnerable zlib1g library in bookworm?
But I have to be aware of this if I want to build some package by myself which depends on zlib1g, right?
Thank you Roberto!