Package: release.debian.org Severity: normal Tags: bullseye User: release.debian....@packages.debian.org Usertags: pu X-Debbugs-Cc: car...@debian.org,anar...@debian.org
Hi SRM, isync in bullseye is affected by CVE-2021-3657[1]. Upstream is providing as well explicit patches for the 1.3.x series. That said, I could not explicitly thest the package for the CVE is question. But I'm X-Debbugs-CC'ing Antoine which might additionally be able to expose the package for bullseye to some real situation testing. Regards, Salvatore [1] https://www.openwall.com/lists/oss-security/2021/12/03/1
