On Sun, 2023-11-12 at 15:39 +0000, Simon McVittie wrote: > On Sun, 12 Nov 2023 at 14:58:42 +0000, Adam D Barratt wrote: > > Package: glib2.0 > > Version: 2.66.8-1+deb11u1 > > > > Explanation: align with upstream stable fixes; fix denial of > > service issues [CVE-2023-32665 CVE-2023-32611 CVE-2023-29499 CVE- > > 2023-32636]; fix buffer overflow issue [CVE-2023-32643] > > If you're able to adjust the release notes between now and the 11.9 > point release, you might want to change this wording so it just > mentions the DoS issues and other stable-branch fixes, but excludes > the buffer overflow issue CVE-2023-32643 from the description of this > update.
Thanks for the note. I've dropped CVE-2023-32643 from the description of the update. Regards, Adam

