Control: tag -1 confirmed On Sat, Feb 24, 2024 at 12:50:51AM +0000, Thorsten Alteholz wrote: > The attached debdiff for libjwt fixes > CVE-2024-25189 in Bookworm. It is marked as > no-dsa by the security team. > The fix is straightfoward and should not make any problems.
It seems quite a lot of effort for something even the author thinks is infeasible in the real world, but OK. Please go ahead. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 ed25519/0x196418AAEB74C8A1: CA619D65A72A7BADFC96D280196418AAEB74C8A1
