[pkg-php-pear] Bug#1065263: bookworm-pu: package php-phpseclib/2.0.42-1+deb12u2

David Prévot taffit at debian.org
Sat Mar 2 10:17:50 GMT 2024


Package: release.debian.org
Severity: normal
Tags: bookworm
X-Debbugs-Cc: php-phpseclib at packages.debian.org, team at security.debian.org
Control: affects -1 + src:php-phpseclib
User: release.debian.org at packages.debian.org
Usertags: pu

Hi,

I’d like to see CVE-2024-27354 and CVE-2024-27355 addressed in the next
point release. We agreed with the security team that these issues are
not worth a DSA.

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in stable
  [x] the issue is verified as fixed in unstable

TIA for considering.

Cheers,

taffit
-------------- next part --------------
A non-text attachment was scrubbed...
Name: php-phpseclib_2.0.42-1+deb12u2.patch
Type: text/x-diff
Size: 11454 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-php-pear/attachments/20240302/0462cdbb/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-php-pear/attachments/20240302/0462cdbb/attachment.sig>


More information about the pkg-php-pear mailing list