Hi Gennaro, On Sat, Dec 30, 2023 at 10:55:32PM +0100, Gennaro Oliva wrote: > Dear Salvatore, > I prepared an updated version of the slurm-wlm package for bookworm in > response to CVE-2023-49933/49935/49936/49937/49938 > > The package can be found here: > > https://people.debian.org/~oliva/slurm-wlm-22.05.8-4+deb12u2 > > debdiff attached. > > A new package for sid in under preparation. > > Please let me know if I can be of any further help. > > I take this opportunity to wish you and to all the security team members > a successful and prosperous new year.
Reviewing your uploaded changes, the changelog mentions CVE-2023-49935, but believe his was not affecting 22.05.8. Let's still release with that in the changelog, the security-tracker should be already correct on that. Do you have any progress for unstable/trixie so we do not have a regression once after the DSA is released? Regards, Salvatore