Le 17/09/2020 à 21:26, Adam D. Barratt a écrit : > Control: tags -1 + confirmed > > On Sat, 2020-09-12 at 08:50 +0200, Xavier wrote: >> > > +libdbi-perl (1.642-1+deb10u1) buster; urgency=medium > + > + * Fix memory corruption in XS functions when Perl stack is reallocated > + (Closes: CVE-2020-14392) > + * Fix a buffer overflow on an overlong DBD class name > + (Closes: CVE-2020-14393) > + > + -- Xavier Guimard <y...@debian.org> Thu, 10 Sep 2020 10:04:13 +0200 > > Please go ahead. > > Regards, > > Adam
Hi, I'm going to try to add also this patch (for CVE-2019-20919: https://github.com/perl5-dbi/dbi/commit/eca7d7c8f I'll push a new debdiff after tests Cheers, Xavier
