On Fri, Apr 14, 2017 at 03:06:35PM +0200, Moritz Muehlenhoff wrote: > Source: grpc > Severity: grave > Tags: security > > Please see > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7861 for details.
Since the packaging team seems to be dead, I've uploaded an NMU of gRPC 1.2.5 to unstable (it doesn't matter for the freeze, as it's not in stretch anyway). It fixes this bug and all the other RC bugs. It's currently stuck in NEW, since it has a soname bump, as well as new packages for libgrpc++ and the protobuf compiler plugins. /* Steinar */ -- Homepage: https://www.sesse.net/
