On Fri, Dec 15, 2017 at 11:57:34AM +0000, Tristan Seligmann wrote: > Dropping no-longer-active maintainers from CC. > > On Sun, 10 Dec 2017 at 21:00 Thorsten Alteholz <[1][email protected]> > wrote: > > Dear maintainer(s), > > The Debian LTS team would like to fix the security issue which is > currently open in the Wheezy version of mercurial: > [2]https://security-tracker.debian.org/tracker/source-package/mercurial > > Would you like to take care of this yourself? > > Unfortunately I won't have the time to take care of this myself, but I'll > be happy to review the work if the LTS team takes care of it. > I already have been working on this. I have been able to reproduce the vulnerability and am working on backporting the changes. The code involved is quite different in the wheezy version.
Regards, -Roberto -- Roberto C. Sánchez
