Control: tags -1 + moreinfo On Wed, 2017-07-26 at 22:51 +0100, Luca Boccassi wrote: > The non-free proprietary nvidia-graphics-drivers version 375.66 in > Stretch is affected by CVE-2017-6257 and CVE-2017-6259. Debian bug: > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869783 > > Please consider allowing the new upstream version 375.82, which fixes > these CVEs, in proposed-updates. As usual with these proprietary > drivers, we cannot just cherry-pick the fixes for the CVEs as they are > in the binary blobs. > > I have tested this new version on a Stretch amd64 desktop and didn't > encounter any issue. > > The debdiff from 375.66-2~deb9u1 to 375.82-1 is attached.
While I'm sure it's probably fine, could we have a diff of the proposed 375.82-1~deb9u1, as built and tested on stretch, please? Regards, Adam
