Bug#868170: libemail-address-perl: Email::Address->parse() is vulnerable to CVE-2015-7686
Pali Rohár
pali.rohar at gmail.com
Thu Nov 16 14:08:24 UTC 2017
On Wednesday 01 November 2017 23:04:24 Pali Rohár wrote:
> On Wednesday 01 November 2017 13:59:53 gregor herrmann wrote:
> > On Wed, 01 Nov 2017 11:36:03 +0100, Pali Rohár wrote:
> >
> > > On Thursday 13 July 2017 17:36:09 Salvatore Bonaccorso wrote:
> > > > In particular as initial step we need a packaged libemail-address-xs-perl. Volunteers?
> > > > ;-)
> > > Hello, any progress on this?
> >
> > Yes.
> > libemail-address-xs-perl has been packaged and uploaded by Damyan a
> > couple of days ago. Currently it's waiting in the NEW queue for
> > ftp-master approval.
And now I see that package is finally in sid:
https://packages.debian.org/sid/libemail-address-xs-perl
What would be next steps?
> > https://bugs.debian.org/879689
> > https://anonscm.debian.org/cgit/pkg-perl/packages/libemail-address-xs-perl.git
> > https://ftp-master.debian.org/new/libemail-address-xs-perl_1.01-1.html
>
> Great! Any chance that package would be included in stable-backports?
> Looking at control file and there should not be any problem with
> recompilation.
--
Pali Rohár
pali.rohar at gmail.com
More information about the pkg-perl-maintainers
mailing list