Hi Adrian,
i agree to prepare a package for the next Jessie point release. I think
these issues are not grave enough for a DSA.
That is my opinon, but i would appreciate feedback.
Greetings,
Marcos
El 11/05/17 a las 21:51, Adrian Bunk escribió:
On Sun, Mar 12, 2017 at 09:06:34AM +0100, Marcos Fouces wrote:
control: severity -1 grave
This could lead to DOS or, even worst, remote code execution. Following
Hilko Bengen's advice: i re-adjust the severity.
Hi Marcos,
thanks a lot for fixing this bug as well as the similar #716355, #716457
and #716458 in dsniff for stretch.
If these issues are serious enough, please coordinate with the security
team (added to Cc) for getting them to jessie as part of a DSA.
If they are not serious enough for a DSA, it would be appreciated if you
could prepare a package for the next jessie point release.
Thanks
Adrian
