[Pkg-rust-maintainers] Bug#986808: CVE-2021-29939
peter green
plugwash at p10link.net
Tue Apr 13 00:51:19 BST 2021
On 12/04/2021 23:54, peter green wrote:
> Hi.
>
> The stackvector crate does not appear to be maintained upstream. The upstream bug underlying this
> issue was reported back in February and has received no response from the upstream maintainer.
Update: the upstream maintainer has now responded to the bug with a tentative fix and plans to
release it soon. Unless there are objections, If/when he does so I will apply it to the Debian
package and upload. Afterwards (but not before the current version of rust-sniffglue has migrated
to testing) I will request a binnmu of rust-sniffglue (which appears to be the only application
built against rust-stackvector) to pick up the fix.
More information about the Pkg-rust-maintainers
mailing list