* Adam D. Barratt: " Re: Bug#1070478: bookworm-pu: package tryton-server/tryton-server_6.0.29-2+deb12u2" (Sat, 15 Jun 2024 16:16:32 +0100):
> Control: tags -1 + confirmed > > On Mon, 2024-05-06 at 10:35 +0200, Mathias Behrle wrote: > > Backport the patch to fix the vulnerabilty to zip bomb > > attacks via decoded gzip content from unauthenticated users. > > https://discuss.tryton.org/t/security-release-for-issue-13142/7196 > > Please go ahead. > > Regards, > > Adam Thanks, uploaded. Cheers -- Mathias Behrle PGP/GnuPG key availabable from any keyserver, ID: 0xD6D09BE48405BBF6 AC29 7E5C 46B9 D0B6 1C71 7681 D6D0 9BE4 8405 BBF6
