Bug#962512: nethack: Security issues in Buster's nethack 3.6.1
Markus Koschany
apo at debian.org
Tue Jun 9 12:04:55 BST 2020
Control: fixed -1 3.6.6-1
Control: severity -1 important
Am 09.06.20 um 03:25 schrieb Jason L. Quinn:
[...]
> Seems like the vunerabilities are important enough to warrant an upgrade in
> Buster.
I'm not against an update of nethack in Buster. However currently such
an update would break nethack-lisp. See also Debian bug 961932. If we
could fix the lisp fork, then it would be ok to backport 3.6.6-1 to
stable I guess. Please note that those security vulnerabilities are not
very severe as long as you play nethack alone and nobody else has access
to your configuration options or nethack itself. This is the most common
game play mode hence the security risk is rather low.
Regards,
Markus
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-games-devel/attachments/20200609/ce69bf9e/attachment.sig>
More information about the Pkg-games-devel
mailing list