Dear Adam, > > > libxcursor (1:1.1.14-1+deb9u2) stretch; urgency=high > > > > > > * Fix a denial of service or potentially code execution via > > > a one-byte heap overflow. (CVE-2015-9262) Closes: #906012) > > > > Would it be possible to get a "yay/nay" on this s-p-u request? > > Please go ahead.
Thanks; uploaded. > > I wouldn't normally press for a response but this is somewhat > > affecting what my next moves are for oldstable and oldoldstable. > > Isn't oldoldstable an ex-release now? Not in ELTS: https://wiki.debian.org/LTS/Extended > FWIW, CCing both a p-u bug and debian-release is a little redundant. Mea culpa… I wasn't sure and my apologies for any duplicates or implications that involved. Thank you for your work on stable. Regards, -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `-
