On Thu, Oct 14, 2021 at 11:06:52AM +0200, Diederik de Haas wrote: > On 7 Oct 2021 18:35:18 +0200 Francesco Poli <invernom...@paranoici.org> wrote: > > This seems to be exactly the same issue that was reported in #995448, > > which is marked as affecting package apt-listbugs. > > > > However, I see that you are using oldstable: I don't know whether a > > fixed version of ruby-httpclient will ever be backported to oldstable. > > Maybe it can enter oldstable as a security update... I am not sure > > whether it will be considered as a security issue worth a DSA, though... > > I just started to write to #995448 to mention that Stable is also affected. > Maybe that changes the equation? > The version of ruby-httpclient is the same for Stable and Oldstable btw.
I have stable and oldstable updates lined up (#996026 and #996024).
signature.asc
Description: PGP signature
