Debian believes that CVE-2019-20637 is a minor issue in Stretch and Buster, that have versions 5.0.0 and 6.1.1, respectively. In addition, when I run the new test f00004.vtc in the source tree for Bionic, I get an error. Therefore, I am not patching this CVE for Bionic.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1971504 Title: Multiple vulnerabilities in Bionic, Focal, Impish, Jammy and Kinetic To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/varnish/+bug/1971504/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
