Control: tags -1 + confirmed On Thu, 2017-09-28 at 05:02 +0200, Salvatore Bonaccorso wrote: > weechat in stretch is affected by CVE-2017-14727, tracked as #876553. > > > * logger: call strftime before replacing buffer local variables > > (CVE-2017-14727) (Closes: #876553) > > https://weechat.org/news/98/20170923-Version-1.9.1-security-release/ > > Attached proposed debdiff for the stretch point release. >
There's quite a bit of noise in such a small diff. :-( I appreciate why, though. Please go ahead. Regards, Adam
