On Mon, 12 Jun 2023 17:50:25 +0200 Bastian Germann <b...@debian.org>
wrote:
> Hi Andrea,
>
> As there was no upload to unstable after the bookworm version, just
upload an unstable 0.11.4+ds-2 with the upstream
> patch (excluding or backporting the test) and mentioning the CVE in
the changelog. Then add a bookworm-security
> changelog entry and debdiff the resulting package to 0.11.4+ds-1.
You send the debdiff to the security team to operate on.
>
> See also
https://www.debian.org/doc/manuals/developers-reference/pkgs.html#bug-security
Hi Bastian, sorry for not replying earlier but I did not receive your
email (it was sent to 1037100-submitter@bugs.d.o).
I've uploaded an updated version of cpp-httplib to Mentors, because of
soname changes (and a need to upload to NEW).
As for fixing the version in bookworm, I'll do it as soon as possible.
Thanks for the continuous help!
--
OpenPGP key: 66DE F152 8299 0C21 99EF A801 A8A1 28A8 AB1C EE49
