On 22.09.2024 15:41, Brian Ristuccia wrote: Hi DBTS,
Thank you. Do you know who might be responsible for requesting / issuing a CVE number for this issue?
Not sure about this, I'll try to clarify.The upstream author provided a patch for this for the 1.3.9 line. I've created a Debian source package containing the patch, which can be found here [1]. I've just tested, if it can be built on Debian unstable.
I would like you to install and test it. If you need a built binary package for a specific architecture let me know, which one and which Debian release.
Thanks, Hilmar [1] https://people.debian.org/~hille42/1082326/ -- Testmail
OpenPGP_signature.asc
Description: OpenPGP digital signature
