Discussion:
Bug#942575: buster-pu: package openjpeg2/2.3.0-2+deb10u1
(too old to reply)
Hugo Lefeuvre
2019-10-18 11:30:01 UTC
Permalink
Package: release.debian.org
Severity: normal
Tags: buster
User: ***@packages.debian.org
Usertags: pu

Dear release managers,

as discussed in #939553[0], no DSA will be issued by the security team for
CVE-2018-21010 and this vulnerability can be fixed via -pu. The attached
debdiff addresses this issue, along with CVE-2018-20847.

This is almost the same debdiff as #942024[1] (for stretch-pu).

thanks!

cheers,
Hugo

[0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939553
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942024
--
Hugo Lefeuvre (hle) | www.owl.eu.com
RSA4096_ 360B 03B3 BF27 4F4D 7A3F D5E8 14AA 1EB8 A247 3DFD
ed25519_ 37B2 6D38 0B25 B8A2 6B9F 3A65 A36F 5357 5F2D DC4C
Adam D. Barratt
2019-11-08 22:10:02 UTC
Permalink
Control: tags -1 + confirmed
Post by Hugo Lefeuvre
as discussed in #939553[0], no DSA will be issued by the security
team for CVE-2018-21010 and this vulnerability can be fixed via -pu.
The attached debdiff addresses this issue, along with CVE-2018-20847.
Please go ahead; thanks.

Regards,

Adam

Loading...