Dear maintainer,
My corporate IT nags me with this CVE, and other distros have already fixed it (Fedora, SUSE, Ubuntu). Yet it seems nothing happens here.
I had to build and install the current version from salsa, but I don't believe this is how things are supposed to be.
Do you confirm that this bug is important to you or do you think it's so minor that it can be ignored? My colleagues are also bothered by the IT, but we can file an exception for this instead of building our own versions, and a rationale from you might be helpful to all of us.
Have a nice day,
Alex Thiessen