Hi Adam, On Sat, Sep 04, 2021 at 03:17:25PM +0100, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Wed, 2021-08-25 at 16:55 +0200, Alberto Gonzalez Iniesta wrote: > > This [1] security bug was found in modsecurity-crs. > > As stated in #992863 by the security team, a DSA won't be issued > > (security team on Cc:) so I'm targeting bullseye proposed updates > > instead. > > > > >From reading #992863 and checking the Security Tracker, it appears that > the issue is already fixed in unstable. However, that fact is not > reflected in the BTS. Assuming that I haven't missed anything, please > add an appropriate fixed version to #992863 and go ahead.
Looks that https://tracker.debian.org/news/1251194/accepted-modsecurity-crs-332-1-source-into-unstable/ did contain a typo for the bug number so got not closed automatically, I send a BTS command accordingly. Regards, Salvatore
