Control: tags -1 + confirmed On Thu, 2026-05-07 at 12:35 +0200, Thomas Goirand wrote: > This version includes fixes for CVE-2026-40683 and CVE-2026-33551 > (ie: LDAP backend cannot disable users, and restricted application > credentials can create EC2 credentials).
Please go ahead. > P.S: I know there's no 27.0.0-3+deb13u2, though there's been one in > the non-official osbpo.debian.net repository I maintain, so it's > nicer to avoid confustion and use +deb13u3. I'll accept it this time, but can't speak for future decisions, either mine or someone else's, so please update your version scheme to avoid any further such clashes. Regards, Adam
