[Pkg-owncloud-maintainers] Bug#989846: CVE-2021-22895
Moritz Mühlenhoff
jmm at inutil.org
Sun Aug 22 20:20:24 BST 2021
Am Sun, Aug 22, 2021 at 08:47:45PM +0200 schrieb Sandro Knauß:
> Hey,
>
> finally, I managed to prepare a patched version of nextcloud-desktop.
>
> I fixed both open isses for nextcloud-desktop for bullseye. See my attached
> debdiff.
>
> * CVE-2021-22895
> * CVE-2021-32728
>
> Did I managed all field correctly (codename and urgency)?
>
> sid with be fixed with a new upload the next hours of 3.3.1-1.
Looks good! Please build with -sa (since nextcloud-desktop is new in bullseye-security
and ftp.d.o and security.d.o don't share tarballs).
What about Buster? Is 2.5 also affected?
Cheers,
Moritz
More information about the Pkg-owncloud-maintainers
mailing list