Bug#988289: htmldoc: CVE-2019-19630

2021-05-13 Thread Utkarsh Gupta
Hi Håvard, On Wed, May 12, 2021 at 9:05 PM Håvard Flaget Aasen wrote: > Thanks for the sponsoring Utkarsh! You're very welcome! :) > I made a package for stretch as well, and uploaded it to mentors. [0] > Though I'm not sure about this lts stuff. So far this package I made > just targets "stret

Bug#988289: htmldoc: CVE-2019-19630

2021-05-12 Thread Håvard Flaget Aasen
On 12.05.2021 00:13, Utkarsh Gupta wrote: > Hi Håvard, > > On Wed, May 12, 2021 at 2:11 AM Håvard Flaget Aasen > wrote: >> I've got the release ready for buster and uploaded it to mentors [0]. I >> also sent a request to the RM, for buster-pu, but haven't got any >> response yet [1]. > > Tha

Bug#988289: htmldoc: CVE-2019-19630

2021-05-11 Thread Håvard Flaget Aasen
Hi Utkarsh > >> I can make a release to buster if you want. I would need a sponsor >> though, so if your determined, I won't rip it out of your hands. > > That'd be helpful, thank you! Please let me know when you have a dsc ready? I've got the release ready for buster and uploaded it to mentors

Bug#988289: htmldoc: CVE-2019-19630

2021-05-11 Thread Utkarsh Gupta
Hi Håvard, On Wed, May 12, 2021 at 2:11 AM Håvard Flaget Aasen wrote: > I've got the release ready for buster and uploaded it to mentors [0]. I > also sent a request to the RM, for buster-pu, but haven't got any > response yet [1]. Thanks for the buster update; uploaded! \o/ You'll not receive

Bug#988289: htmldoc: CVE-2019-19630

2021-05-11 Thread Utkarsh Gupta
Hi Håvard, On Tue, May 11, 2021 at 3:09 AM Håvard Flaget Aasen wrote: > I wasn't aware this versioning could be a problem. Yep, a big one sometimes :) > I can make a release to buster if you want. I would need a sponsor > though, so if your determined, I won't rip it out of your hands. That'd

Bug#988289: htmldoc: CVE-2019-19630

2021-05-10 Thread Håvard Flaget Aasen
On Mon, 10 May 2021 00:28:43 +0530 Utkarsh Gupta wrote: > Hello, > > That's pretty unfortunate what happened. Since I fixed this in jessie > (back when it was LTS), I'll take care of stretch (now that it's LTS) > and subsequently buster as well. Thanks! > > Hi Utkarsh, I wasn't aware this ve

Bug#988289: htmldoc: CVE-2019-19630

2021-05-09 Thread Utkarsh Gupta
Hello, That's pretty unfortunate what happened. Since I fixed this in jessie (back when it was LTS), I'll take care of stretch (now that it's LTS) and subsequently buster as well. Thanks!

Bug#988289: htmldoc: CVE-2019-19630

2021-05-09 Thread Andreas Beckmann
Source: htmldoc Version: 1.8.27-8 Severity: serious Tags: security User: debian...@lists.debian.org Usertags: piuparts Control: fixed -1 1.8.27-8+deb8u1 Control: fixed -1 1.9.7-1 Hi, CVE-2019-19630 is fixed in jessie-lts but not stretch-lts, making upgrades difficult since jessie-security has a n