Control: tags -1 pending Hi!
Am 29.01.19 um 21:40 schrieb Salvatore Bonaccorso: > Source: binaryen > Version: 64-1 > Severity: important > Tags: security upstream > > Hi, > > The following vulnerabilities were published for binaryen. > > I was initially confused about the intersting versioning scheme, but > the issues are present in 64-1 and I think all of those fixed in 65 > upstream (but please double-check the referenced upstream issues and > fixing commits as commited by upstream). [...] I always love it when packages are affected by security issues that I merely need to compile stuff from source. Indeed the versioning scheme is slightly confusing. Apparently the float number 1.38.x is in sync with Emscripten releases. The integer version is the "standalone" version of binaryen, at least that's what I think. Since Emscripten in Debian is pretty much broken and I don't want to be bound to the further packaging of it, I have chosen to use the integer version. To me it looks like everything was fixed in 65, a couple of minutes ago 66 was released, which I am going to upload now. Cheers, Markus
signature.asc
Description: OpenPGP digital signature
