Control: tags -1 + confirmed On Sat, 2019-07-27 at 11:30 +0200, Roland Rosenfeld wrote: > This fixes CVE-2019-14275 in buster. Since this is tagged > "unimportant" by the security team on > https://security-tracker.debian.org/tracker/CVE-2019-14275 they won't > publish a DSA, so I tend to send this into the next point release of > buster. > > Attached you'll find the diff agains 3.2.7a-5. The patch is a little > longer, because I included the test code to check for this > vulnerability and code for the salsa CI pipeline.
Please go ahead. Regards, Adam