Hi Håvard, On Thu, Mar 25, 2021 at 06:32:40AM +0000, Håvard Flaget Aasen wrote: > Hi Salvatore, > > On Tue, 23 Mar 2021 13:35:48 +0100 Salvatore Bonaccorso > <car...@debian.org> wrote: > > > > > On Sat, Mar 13, 2021 at 05:16:24PM +0000, Adam D. Barratt wrote: > > > Control: tags -1 + confirmed > > > > > > On Wed, 2021-02-17 at 23:33 +0100, Håvard Flaget Aasen wrote: > > > > These are the same changes which was implemented in stretch, two > > > > upstream patches. Both of these patches resolves a path traversal > > > > flaw, which was first discovered with CVE-2017-1000501. > > > > > > > > > > Please go ahead. > > > > Was this uploaded? Can you still do it, but will be late for 10.9 now. > > > > > Since I'm not a DD, I uploaded it to the mentors site. I haven't found > any sponsor yet..
Thanks for the status update. Could you maybe ask your sponsor (for the unstable upload) directly on the case for the buster-pu upload? Many thanks for your work and taking care of fixing those issues! Regards, Salvatore
