Control: tags -1 + confirmed On Sat, 2021-05-22 at 11:47 +0200, Roland Rosenfeld wrote: > I prepared an update for fig2dev 1:3.2.7a-5+deb10u3 to deb10u4, which > in the first time fixes CVE-2021-3561 (the security team doesn't > intend to create a DSA but redirected me here). > > Additionally it fixes four other buffer overflows, that are all fixed > upstream and I backported the fixes. >
I'm assuming that "fixed upstream" here implies that the fixes are also in unstable? If so, please go ahead. Regards, Adam
