ure and there's a lower risk of carrying a low-profile bug. That being said,
feel free to go ahead if you still prefer to use the original version of the
function.
I have sent the debdiffs for the fixes for bullseye and bookworm (for their
respective affected CVEs) to the security team and I'm waiting on their ack.
Thank you,
--
Samuel Henrique
ases, fix the ldap issue (#1057855) on unstable, and then come back to
CVE-2023-27534 and CVE-2023-28322 (to be more confident on what to do).
I appreciate the reach out.
Thank you,
--
Samuel Henrique
and
> you can find it at:
> https://salsa.debian.org/debian/curl/-/commit/3a88731d4a68a2c3a21d1c6745f4795c2f734140
>
> Feel free to make modifications or revise the commit if you find it necessary.
Awesome, thank you.
--
Samuel Henrique
o there
shall soon be a new upload on buster.
Thank you for helping,
--
Samuel Henrique
in 99% of the cases.
--
Samuel Henrique
> Hopefully, you meant "stretch-security". :)
Hahaha, yes, I knew I should have copy-pasted to the email.
> Anyway, thank you! Everything looks fine, I'll take care of the paperwork.
Thanks,
--
Samuel Henrique
uot;20160613.1+deb9u1 security-master" as per
Utkarsh's request on pvt.
The package has been uploaded to security-master and I pushed the
changes to salsa:
https://salsa.debian.org/debian/ieee-data/-/tree/debian/stretch
Thanks,
--
Samuel Henrique
the impact/blast radius is well
contained) and there were at least 3 people interested on it (who
interacted with the bug reports).
Thanks,
--
Samuel Henrique
.
--
Samuel Henrique