Hi Andrea, On Sun, Jul 14, 2024 at 05:15:58PM +0200, Andrea Bolognani wrote: [...] > The only thing that strikes me as a bit odd and we might need to > rectify is that CVE-2024-2496, while properly tracked in the Debian > security tracker, doesn't have a corresponding Debian bug. Should one > be filed?
This is (but a SRM might correct me), is not strictly necessary as it can be verified as well from the security-tracker that the upper suites have the fix as well already. Regards, Salvatore
