On Sat, 4 Dec 2021, Adam D. Barratt wrote:
Control: tags -1 + confirmed On Thu, 2021-10-28 at 22:35 +0000, Thorsten Alteholz wrote:The attached debdiff for jbig2dec fixes CVE-2020-12268 in Buster. This CVE is marked as no-dsa by the security team. The patch just adds some checks to prevent an overflow, so the risk should be small. The testsuite of the package showed no errors.Please go ahead, thanks.
Thanks, uploaded now. Thorsten
