[Pkg-kde-extras] Bug#865999: [exiv2] Please package exiv2 0.26
Richard B. Kreckel
kreckel at debian.org
Sat Mar 9 23:26:43 GMT 2019
On Tue, 26 Sep 2017 17:56:57 +0200 Raphael Hertzog <hertzog at debian.org>
wrote:
> Except that version 0.26 is vulnerable to multiple security issues which
> are currently not present in earlier versions [...]
Raphaƫl, what makes you sure that these CVEs are not present in earlier
versions (e.g. in 0.25 currently in testing)?
They were reported against 0.26 because that version was fuzzed, that's
all, AFICT.
-richy.
--
Richard B. Kreckel
<https://in.terlu.de/~kreckel/>
More information about the pkg-kde-extras
mailing list