[pkg-bacula-devel] Accepted bacula 7.4.4+dfsg-6+deb9u2 (source amd64 all) into oldstable
Sven Hartge
sven at svenhartge.de
Sun Aug 30 02:15:52 BST 2020
On 29.08.20 18:30, Debian FTP Masters wrote:
> bacula (7.4.4+dfsg-6+deb9u2) stretch-security; urgency=medium
> .
> * Non-maintainer upload by the LTS Team.
> * CVE-2020-11061
> oversized digest strings allow a malicious client to cause
> a heap overflow in the director's memory
How does one handle this? Do we now import this version into the stretch
branch to preserve the history if the need arises to do another
stretch-pu non-security upload after this? Or just to have everything in
one place?
Grüße,
Sven
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-bacula-devel/attachments/20200830/f67646f7/attachment.sig>
More information about the pkg-bacula-devel
mailing list