Source: htmldoc Version: 1.8.27-8 Severity: serious Tags: security User: debian...@lists.debian.org Usertags: piuparts Control: fixed -1 1.8.27-8+deb8u1 Control: fixed -1 1.9.7-1
Hi, CVE-2019-19630 is fixed in jessie-lts but not stretch-lts, making upgrades difficult since jessie-security has a newer version than stretch(-security). Please upload the fix to stretch-lts, too. And as it looks, this is also unfixed in buster. htmldoc | 1.8.27-8 | jessie | source htmldoc | 1.8.27-8 | stretch | source htmldoc | 1.8.27-8+deb8u1 | jessie-security | source htmldoc | 1.9.3-1 | buster | source htmldoc | 1.9.11-2 | bullseye | source htmldoc | 1.9.11-2 | sid | source Andreas