[R-pkg-team] Bug#1041099: CVE bugs in commonmark

Andreas Tille andreas at an3as.eu
Mon Jan 15 07:35:41 GMT 2024


Control: tags -1 upstream
Control: forwarded -1 Jeroen Ooms <jeroen at berkeley.edu>

Hi Jeroen,

I'd like to bring some bugs to your attention that were filed against
the Debian packaged commonmark.  All these bugs got at least one CVE bug
number:

  https://bugs.debian.org/1033112  CVE-2023-22483 CVE-2023-22484 CVE-2023-22485 CVE-2023-22486
  https://bugs.debian.org/1034173  CVE-2023-26485 CVE-2023-2482
  https://bugs.debian.org/1041099  CVE-2023-37463

It might perfectly be the case that you even have dealt with those
issues but it would be great if you could mention those fixed issues in
some changelog document to let us know we can close the according
Debian bugs.

Kind regards
    Andreas.

-- 
http://fam-tille.de



More information about the R-pkg-team mailing list