Bug#988608: RFS: scrollz/2.2.3-2 - advanced ircII-based IRC client

To: submit@bugs.debian.org
Subject: Bug#988608: RFS: scrollz/2.2.3-2 - advanced ircII-based IRC client
From: Mike Markley <mike@markley.org>
Date: Sun, 16 May 2021 14:55:32 -0600
Message-id: <[🔎] 20210516205532.fv3wufktrhpghxex@debian>
Reply-to: Mike Markley <mike@markley.org>, 988608@bugs.debian.org

Package: sponsorship-requests
Severity: normal

I'm seeking assistance uploading a new version of the ScrollZ IRC client
to unstable that addresses an outstanding CVE:
https://security-tracker.debian.org/tracker/CVE-2021-29376.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986215

Changes:
 scrollz (2.2.3-2) unstable; urgency=high
 .
   * Applied patch to ctcp.c to fix CVE-2021-29376 from
     https://github.com/ScrollZ/ScrollZ/pull/26 (Closes: #986215)
   * Applied minor patch from upstream to the above fix

I'm listed as the maintainer in this package's control file, but I haven't
had a key in the keyring for several years.

This should be the minimum change required to fix this issue. I anticipate
there will also be stable and possibly oldstable uploads, as well.

Post-freeze, I do plan to update the source package to a newer upstream
version.

-- 
Mike Markley <mike@markley.org>

Reply to:

Follow-Ups:
- Bug#988608: RFS: scrollz/2.2.3-2 - advanced ircII-based IRC client
  - From: Mike Markley <mike@markley.org>

Prev by Date: Bug#988474: [Fwd: Bug#988474: RFS: freefem++/3.61.1+dfsg1-5.2 [NMU] [RC] -- Provides the binaries of the FreeFem++ FE suite]
Next by Date: Bug#988474: [Fwd: Bug#988474: RFS: freefem++/3.61.1+dfsg1-5.2 [NMU] [RC] -- Provides the binaries of the FreeFem++ FE suite]
Previous by thread: Bug#988598: marked as done (RFS: vnstat/2.7-1 -- console-based network traffic monitor)
Next by thread: Bug#988608: RFS: scrollz/2.2.3-2 - advanced ircII-based IRC client
Index(es):
- Date
- Thread