Control: tags -1 + moreinfo On Wed, 2015-05-27 at 14:24 +0200, Matteo F. Vescovi wrote: > I'd like to upload a new version of libraw to stable/jessie. > > LibRaw package in jessie is 0.16.0-9 at the moment and it's affected by > the security issue stated in CVE-2015-3885[1], as reported in #786788 > (also affecting wheezy and I'll prepare a wheezy pu for that too). > > Upstream already fixed the problem in 0.16.1 version and released it on > May 11th; after that, another minor release has been made (namely, > 0.16.2 released on May 16th) and I've used the latter to fix the > security hole in unstable and testing, eventually.
#786788 claims that the bug still affects the version of the package in unstable. If that's not correct, please fix the metadata. Regards, Adam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org