Hi, On Mon, May 04, 2020 at 09:33:09PM -0500, John Goerzen wrote: > Package: shadowsocks-libev > Version: 3.2.5+ds-1 > Severity: normal > Tags: security > > Per > https://github.com/shadowsocks/shadowsocks-libev/blob/master/debian/changelog > : > > shadowsocks-libev (3.3.4-1) unstable; urgency=medium > > * Minor bug fixes. (#2539, #2565, #2566, #2577) > * Security bug fixes. (CVE-2019-5163, CVE-2019-5164) > > It would be good to get this version, or at least these patches, into > buster security updates.
FWIW, those were marked 'no-dsa', but a fix via an upcoming point release would be great to have. Regards, Salvatore
