[Pkg-rust-maintainers] Bug#986803: CVE-2021-28875 CVE-2021-28876 CVE-2021-28877 CVE-2021-28878 CVE-2021-28879 CVE-2020-36317 CVE-2020-36318

Yao Wei (=?UTF-8?Q?=E9=AD=8F=E9=8A=98=E5=BB=B7?=) mwei at debian.org
Sun Apr 25 01:57:43 BST 2021


tag -1 patch
thanks

Attached is the proposed patch onto debian repo for this bug.  Note
that because the patch order is important (one patch depends on another).

Some tests on the original PRs did not apply because there were no such
files in 1.48

Please review before apply since I don't know whether any of these CVEs
are introduced by changes not in 1.48.

Thanks,
Yao Wei
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-CVE-fixups-Closes-986803.patch
Type: text/x-diff
Size: 17655 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-rust-maintainers/attachments/20210425/722c9a8b/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-rust-maintainers/attachments/20210425/722c9a8b/attachment.sig>


More information about the Pkg-rust-maintainers mailing list