Source: request-tracker4 Version: 4.4.7+dfsg-4 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi, The following vulnerability was published for request-tracker4. CVE-2025-61873[0]. Filling just for visibility, there is already a blocking bug #1030749, so package won't enter testing. Question: Should request-tracker4 be removed from unstable? If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2025-61873 https://www.cve.org/CVERecord?id=CVE-2025-61873 Regards, Salvatore
