HI Scott, On Wed, Jan 12, 2022 at 03:56:22PM -0500, Scott Kitterman wrote: > Package: release.debian.org > Severity: normal > Tags: bullseye > User: release.debian....@packages.debian.org > Usertags: pu > > Security issue was evaluated as no-dsa, so following up as a regular > stable update: > > https://security-tracker.debian.org/tracker/CVE-2022-22846 > > The dnslib package through 0.9.16 for Python does not verify that the ID value > in a DNS reply matches an ID value in a query. > > The only change in the new upstream release is the fix for this issue, > so it seems better to bump to the new release. Package is ready for > upload. Both package and autopkgtest tests pass. There is a minor > change from how the tests were called bullseye to better match with how > it was done with this version in unstable. > > Most of the change is documentation changes driven by tooling changes in > the upstream build system. The code changes are very minor. > > bullseye debdiff attached.
Is this the right debdiff? It looks this is the one which hit unstable? Regards, Salvatore
