Control: tag -1 confirmed On Mon, Oct 23, 2023 at 08:10:34PM +0200, Bastian Germann wrote: > Please find a version with an additional fix for CVE-2023-3724 attached.
> diff -Nru wolfssl-4.6.0+p1/debian/changelog wolfssl-4.6.0+p1/debian/changelog > --- wolfssl-4.6.0+p1/debian/changelog 2022-03-17 21:47:46.000000000 +0000 > +++ wolfssl-4.6.0+p1/debian/changelog 2023-07-22 16:08:27.000000000 +0000 > @@ -1,3 +1,14 @@ > +wolfssl (4.6.0+p1-0+deb11u2) bullseye; urgency=medium > + > + * Stable update for the following vulnerabilities. The patches were > + provided by upstream. > + - PR 5498: CVE-2022-42961 > + - PR 5588: CVE-2022-39173 > + - PR 5682: CVE-2022-42905 > + - PR 6412: CVE-2023-3724 > + Please add a brief description of what each of these vulnerabilities actually is. > + -- Jacob Barthelmeh <sirkilam...@msn.com> Sat, 22 Jul 2023 10:08:27 -0600 I take it you're sponsoring? Otherwise this looks odd. Once updated please go ahead. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 ed25519/0x196418AAEB74C8A1: CA619D65A72A7BADFC96D280196418AAEB74C8A1
