Bug#933637: Bug#933636: CVE-2019-14934

2021-03-25 Thread Salvatore Bonaccorso
Hi Francois, On Fri, Jul 31, 2020 at 10:18:23AM +0200, Salvatore Bonaccorso wrote: > Hi Francois, > > On Mon, Feb 10, 2020 at 03:59:22PM -0800, Francois Marier wrote: > > On 2020-02-07 at 10:14:24, Salvatore Bonaccorso wrote: > > > > It looks OK to me. Tagging moreinfo until there's a final diff.

Bug#933637: Bug#933636: CVE-2019-14934

2020-07-31 Thread Salvatore Bonaccorso
Hi Francois, On Mon, Feb 10, 2020 at 03:59:22PM -0800, Francois Marier wrote: > On 2020-02-07 at 10:14:24, Salvatore Bonaccorso wrote: > > > It looks OK to me. Tagging moreinfo until there's a final diff. > > > > Friendly ping, any news? (It's too late now for the upcoming point > > release thoug

Bug#933636: CVE-2019-14934

2020-06-15 Thread Adam D. Barratt
On Mon, 2020-02-10 at 15:59 -0800, Francois Marier wrote: > On 2020-02-07 at 10:14:24, Salvatore Bonaccorso wrote: > > > It looks OK to me. Tagging moreinfo until there's a final diff. > > > > Friendly ping, any news? (It's too late now for the upcoming point > > release though). > > It's still o

Bug#933636: CVE-2019-14934

2020-02-10 Thread Francois Marier
On 2020-02-07 at 10:14:24, Salvatore Bonaccorso wrote: > > It looks OK to me. Tagging moreinfo until there's a final diff. > > Friendly ping, any news? (It's too late now for the upcoming point > release though). It's still on my list, but not a very high priority. Definitely won't happen until a

Bug#933636: CVE-2019-14934

2020-02-07 Thread Salvatore Bonaccorso
Hi Francois, On Tue, Aug 20, 2019 at 09:42:54PM +0100, Adam D. Barratt wrote: > Control: tags -1 + moreinfo > > On Tue, 2019-08-13 at 23:29 -0700, Francois Marier wrote: > > There is now an additional CVE that affects pdfresurrect in buster > > and > > stretch: > > > > https://security-tracker

Bug#933636: CVE-2019-14934

2019-08-20 Thread Adam D. Barratt
Control: tags -1 + moreinfo On Tue, 2019-08-13 at 23:29 -0700, Francois Marier wrote: > There is now an additional CVE that affects pdfresurrect in buster > and > stretch: > > https://security-tracker.debian.org/tracker/CVE-2019-14934 > > Neither this one or CVE-2019-14267 are deemed worthy of

Bug#933636: CVE-2019-14934

2019-08-14 Thread Salvatore Bonaccorso
Hi Francois, [Important disclaimer: not part of the release team] On Tue, Aug 13, 2019 at 11:29:55PM -0700, Francois Marier wrote: > There is now an additional CVE that affects pdfresurrect in buster and > stretch: > > https://security-tracker.debian.org/tracker/CVE-2019-14934 > > Neither thi

Bug#933636: CVE-2019-14934

2019-08-13 Thread Francois Marier
There is now an additional CVE that affects pdfresurrect in buster and stretch: https://security-tracker.debian.org/tracker/CVE-2019-14934 Neither this one or CVE-2019-14267 are deemed worthy of a DSA however. If you approve the first upload I have prepared for buster and stretch, I will revis