Package: electrum Version: 4.4.6+dfsg-1 Severity: grave Tags: patch security upstream Justification: user security hole X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
4.3.4+dfsg1-1 is susceptible to the Lightning bug fixed upstream in version 4.4.6. https://github.com/spesmilo/electrum/security/advisories/GHSA-8r85-vp7r-hjxf This can be fixed by a cherry-picked fix prepared by upstream. https://github.com/spesmilo/electrum/commit/11fba68126f82d05de90efd67f2b43dfd1b8f22c