Hi Salvatore, On Thu, May 21, 2026 at 07:29:02AM +0200, Salvatore Bonaccorso wrote: > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry. > This was already fixed in versions 2.3.0-1, 1.30.4-1+deb13u2, and 1.23.1-1+deb12u3. Those last two went into the point release last weekend, but that was before the CVE had been allocated.
> > Please adjust the affected versions in the BTS as needed. > I have set the correct fixed versions in the BTS. Regards, -Roberto -- Roberto C. Sánchez
