[Pkg-auth-maintainers] Bug#935999: buster-pu: package libu2f-host/1.1.9-1+deb10u1

Nicolas Braud-Santoni nicoo at debian.org
Wed Aug 28 21:29:02 BST 2019 

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian.org at packages.debian.org
Usertags: pu
Control: block 923874 by -1
Control: block 925274 by -1
Control: tag 923874 + pending buster
Control: tag 925274 + pending buster

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Dear release team,

I would like to backport the following patches for libu2f-host to stretch:

  + Fix for CVE-2019-9578 (Closes: #923874)
  + Support for new hardware devices
    - Kensington Verimark
    - KeyID U2F
    - Ledger Nano S and X
    - Longmai mFIDO
    - SoloKeys (Closes: #925274)
    - Trezor

All patches are from upstream's 1.1.10 release, packaged in sid and bullseye.
The proposed debdiff is enclosed.


Best,

  nicoo


- -- System Information:
Debian Release: bullseye/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

-----BEGIN PGP SIGNATURE-----
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=nfNQ
-----END PGP SIGNATURE-----

More information about the Pkg-auth-maintainers mailing list