Bug#933636: CVE-2019-14934
Hi Francois,
On Tue, Aug 20, 2019 at 09:42:54PM +0100, Adam D. Barratt wrote:
> Control: tags -1 + moreinfo
>
> On Tue, 2019-08-13 at 23:29 -0700, Francois Marier wrote:
> > There is now an additional CVE that affects pdfresurrect in buster
> > and
> > stretch:
> >
> > https://security-tracker.debian.org/tracker/CVE-2019-14934
> >
> > Neither this one or CVE-2019-14267 are deemed worthy of a DSA
> > however.
> >
> > If you approve the first upload I have prepared for buster and
> > stretch, I
> > will revise it to include the fix for this second CVE, but I will
> > wait for
> > your initial approval before putting any more work into this.
>
> It looks OK to me. Tagging moreinfo until there's a final diff.
Friendly ping, any news? (It's too late now for the upcoming point
release though).
Regards,
Salvatore
Reply to: