[pkg-php-pear] Bug#1014492: guzzle: CVE-2022-31090 CVE-2022-31091
Katharina Drexel
katharina.drexel at bfh.ch
Mon Jul 18 08:51:52 BST 2022
Hi David,
I set pkg-php-pear at lists.alioth.debian.org as maintainer and corrected the
upstream version in the gbp.conf (used as template the PHPGroup Wiki:
https://wiki.debian.org/Teams/DebianPHPGroup/Composer#debian.2Fgbp.conf).
I pushed now again, if there are any other changes to be done, please let me
know.
Regards
Katharina
On Saturday, 2022-07-16, 09:26:10 (GMT +0200), David Prévot wrote:
> Hi Katharina,
>
> Le Thu, Jul 07, 2022 at 10:56:06AM +0200, Katharina Drexel a écrit :
> […]
> > thanks for the hints. I pushed a new version in the repo
> > (https://salsa.debian.org/php-team/pear/php-guzzlehttp-guzzle).
> > TBD: someone should upload it in the debian repo.
>
> You may wish to CC: pkg-php-pear at lists.alioth.debian.org for such
> request, or even better, actually set the list as Maintainers so
> everyone is made aware of the bug (before receiving hundreds of
> autoremoval warnings).
>
> The current repository is a mess, can you properly set up gbp please?
>
> Regards
>
> David
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-php-pear/attachments/20220718/45f5aa78/attachment.sig>
More information about the pkg-php-pear
mailing list