Control: tags -1 + confirmed On Thu, 2021-10-28 at 22:35 +0000, Thorsten Alteholz wrote: > The attached debdiff for jbig2dec fixes CVE-2020-12268 in Buster. > > This CVE is marked as no-dsa by the security team. > > The patch just adds some checks to prevent an overflow, so the risk > should be small. The testsuite of the package showed no errors. >
Please go ahead, thanks. Regards, Adam
