Hi, On Tue, 2017-09-05 at 14:12 +0200, Rhonda D'Vine wrote: > > maybe you should look into the git repository of the package instead > of > assuming what I might mean. Because like written, I specificly mean > CVE-2017-10965 and CVE-2017-10966 which are fixed in the package that > I > uploaded to stretch-proposed and was approved (see #870659). It is > also > found in the corresponding bugreport for those IDs (#867598). >
Sorry, I was talking about the security team point of view, they marked them as minor issues. And I did not see this patch, thanks for point me to that. I'll prepare an upload to jessie and contact the release team (I'll Cc you). Apologize for the missunderstanding. Cheers. -- Lucas Kanashiro
