Hi Marco, On Thu, Apr 04, 2024 at 11:05:03AM +0200, Marco d'Itri wrote: > On Apr 04, Salvatore Bonaccorso <[email protected]> wrote: > > > While I do agree (and it was filled with this severity), the bug > > severity would not be RC, varnish currently seem to lack active > > maintainership. > Not anymore: https://salsa.debian.org/md/varnish/ .
Ok that are good news, thank you for taking care of it. For CVE-2023-44487 and CVE-2024-30156 Moritz did already mark then as "ignored" (as beeing as well too intrusive for backporting) for bullseye and bookworm. Regards, Salvatore
