Hi Nicolas, On Fri, Feb 08, 2019 at 08:23:10PM +0100, Nicolas Braud-Santoni wrote: > On Fri, Feb 08, 2019 at 02:08:40PM +0100, Salvatore Bonaccorso wrote: > > Hi, > > > > The following vulnerability was published for libu2f-host. > > > > CVE-2018-20340[0]: > > buffer overflow > > > Hi Salvatore & Sébastien, > > Thanks a lot for the swift report(s). :) > > I just uploaded a fixed version to unstable.
Thank you, tracker information is updated already. > I will see about backporting the fix to stretch. while the issue was not yet public, Sébastien did work on an update for stretch-security. Lets see if he would like to release his version of the upload. Regards, Salvatore
