Dear Colleagues, I have solved CVE-2021-3624 (#984761) sometime ago. Yesterday, I have retraced the issue, and send an e-mail with information to upstream author.
Unfortunately, the patched upgrade is still (falsely?) indicated as unsolved [1]. Had I overlooked any standard procedure for announcements to security team? Or, is there something other to do? Best regards, FH -- [1] https://security-tracker.debian.org/tracker/CVE-2021-3624 -- F. Hroch <[email protected]>, Masaryk University, Dept. of theor. physics and astrophysics, Brno, Moravia, CZ
