Control: clone -1 -2 Control: retitle -2 Don't release with bookworm Control: submitter -2 ! Control: severity -2 serious
On Sat, Apr 1, 2023 at 2:48 AM Salvatore Bonaccorso <car...@debian.org> wrote: > > Source: golang-github-crewjam-saml > Version: 0.4.12-2 > Severity: grave > Tags: security upstream > Justification: user security hole > X-Debbugs-Cc: car...@debian.org, Debian Security Team > <t...@security.debian.org> > > Hi, > > The following vulnerability was published for golang-github-crewjam-saml. > Strictly speaking might be disputed if it is RC level, but would be > good to have it fixed in bookworm before the release. > > CVE-2023-28119[0]: > Let's remove it from bookworm. No reverse dependency. -- Shengjing Zhu