[Pkg-clamav-devel] Debian ClamAV and bug report #1080962
Reid, Andrew C.E. (Fed)
andrew.reid at chips.gov
Thu Oct 10 21:21:29 BST 2024
Hi again Sebastian --
So I do have a further question, my expectation at this point
is that a fixed package will appear in the repos, and the CVEs will
show as fixed on the relevant Debian security pages.
I haven't seen that yet, do you know how long that usually
takes? Or are my expectations wrong, and there's another
channel where things happen?
> https://security-tracker.debian.org/tracker/CVE-2024-20506
> https://security-tracker.debian.org/tracker/CVE-2024-20505
Thanks again for your engagement and help!
-- A.
On Thu, Oct 03, 2024 at 09:53:25PM +0200, Sebastian Andrzej Siewior wrote:
> On 2024-09-30 09:52:39 [-0400], Reid, Andrew C.E. (Fed) wrote:
> > ... where it's listed as a "minor issue" for Bullseye,
> > and "No DSA" for Bookworm, with a deferral to -updates.
>
> Bullseye is done by LTS team now. I submitted a pu for Bookworm [0]
> which should get to proposed-updates once the stable team processes it.
>
> If you have further questions, just ask them.
>
> [0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083223
>
> Sebastian
--
Dr. Andrew C. E. Reid
Physical Scientist, Computer Operations Administrator
Center for Theoretical and Computational Materials Science
National Institute of Standards and Technology, Mail Stop 8555
Gaithersburg MD 20899 USA
andrew.reid at nist.gov
More information about the Pkg-clamav-devel
mailing list