Bug#868170: libemail-address-perl: Email::Address->parse() is vulnerable to CVE-2015-7686
Pali Rohár
pali.rohar at gmail.com
Fri Jul 20 10:53:59 BST 2018
On Saturday 07 July 2018 22:16:05 Pali Rohár wrote:
> So for two packages from six are patches available, just needs to be
> send to upstream. Are you as Debian downstream maintainers handle those
> two Data::Validate::Email and Perl::Critic modules and try to find
> contact of upstream projects?
>
> About request-tracker4 can you try to check what is current state?
>
> And about remaining, should I fill a bug for duck, cil,
> libhtml-fromtext-perl and libtemplate-plugin-clickable-email-perl
> packages? Or do you have a better idea how to handle
> libregexp-common-email-address-perl and libemail-find-perl?
PING, any comments?
--
Pali Rohár
pali.rohar at gmail.com
More information about the pkg-perl-maintainers
mailing list