Bug#987959: pev: peres affected by off-by-one error in libpe

I asked for an unblock from the release team in https://bugs.debian.org/988095 >. -- Happy hacking Petter Reinholdtsen

Damit Sie weiterhin online bezahlen können

Porsche  ®Card Damit Sie weiterhin online bezahlen können Aufgrund der EU-Richtlinie PSD2 müssen Sie Online-Zahlungen mit Ihrer Lufthansa Porsche Credit Card immer häufiger freigeben. Aktivieren Sie dazu ab sofort eines unserer zwei Mastercard® Identity Check™ Verfahren: 1) Freigabe üb

Processing of orbit2_2.14.20-3_source.changes

orbit2_2.14.20-3_source.changes uploaded successfully to localhost along with the files: orbit2_2.14.20-3.dsc orbit2_2.14.20-3.debian.tar.xz orbit2_2.14.20-3_amd64.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)

orbit2_2.14.20-3_source.changes REJECTED

orbit2_2.14.20-3.dsc: Refers to non-existing file 'orbit2_2.14.20.orig.tar.bz2' Perhaps you need to include the file in your upload? If the orig tarball is missing, the -sa flag for dpkg-buildpackage will be your friend. === Please feel free to respond to this email if you don't understand

Processing of orbit2_2.14.20-3_source.changes

orbit2_2.14.20-3_source.changes uploaded successfully to localhost along with the files: orbit2_2.14.20-3.dsc orbit2_2.14.20-3.debian.tar.xz orbit2_2.14.20-3_amd64.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)

orbit2_2.14.20-3_source.changes REJECTED

orbit2_2.14.20-3.dsc: Refers to non-existing file 'orbit2_2.14.20.orig.tar.bz2' Perhaps you need to include the file in your upload? If the orig tarball is missing, the -sa flag for dpkg-buildpackage will be your friend. === Please feel free to respond to this email if you don't understand

Bug#988151: CVE-2020-23922

Source: giflib Severity: important Tags: security X-Debbugs-Cc: Debian Security Team CVE-2020-23922: https://sourceforge.net/p/giflib/bugs/151/

Processing of orbit2_2.14.20-3_source.changes

orbit2_2.14.20-3_source.changes uploaded successfully to localhost along with the files: orbit2_2.14.20-3.dsc orbit2_2.14.20-3.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org)

orbit2_2.14.20-3_source.changes REJECTED

orbit2_2.14.20-3.dsc: Refers to non-existing file 'orbit2_2.14.20.orig.tar.bz2' Perhaps you need to include the file in your upload? If the orig tarball is missing, the -sa flag for dpkg-buildpackage will be your friend. === Please feel free to respond to this email if you don't understand

Bug#987959: pev: peres affected by off-by-one error in libpe

Since it can corrupt adjacent heap chunk metadata, this definitely looks like a security issue to me. On Thu, May 6, 2021 at 9:29 AM Petter Reinholdtsen wrote: > > I asked for an unblock from the release team in > https://bugs.debian.org/988095 >. > > -- > Happy hacking > Petter Reinholdtsen >

Processed: tagging 988151, bug 988151 is forwarded to https://sourceforge.net/p/giflib/bugs/151/

Processing commands for cont...@bugs.debian.org: > tags 988151 + upstream Bug #988151 [src:giflib] CVE-2020-23922 Added tag(s) upstream. > forwarded 988151 https://sourceforge.net/p/giflib/bugs/151/ Bug #988151 [src:giflib] CVE-2020-23922 Set Bug forwarded-to-address to 'https://sourceforge.net/p/