Package: release.debian.org Severity: normal Tags: buster User: release.debian....@packages.debian.org Usertags: pu Control: block 923874 by -1 Control: block 925274 by -1 Control: tag 923874 + pending buster Control: tag 925274 + pending buster
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Dear release team, I would like to backport the following patches for libu2f-host to stretch: + Fix for CVE-2019-9578 (Closes: #923874) + Support for new hardware devices - Kensington Verimark - KeyID U2F - Ledger Nano S and X - Longmai mFIDO - SoloKeys (Closes: #925274) - Trezor All patches are from upstream's 1.1.10 release, packaged in sid and bullseye. The proposed debdiff is enclosed. Best, nicoo - -- System Information: Debian Release: bullseye/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled -----BEGIN PGP SIGNATURE----- iQJFBAEBCgAvFiEEU7EqA8ZVHYoLJhPE5vmO4pLV7MsFAl1m5AwRHG5pY29vQGRl Ymlhbi5vcmcACgkQ5vmO4pLV7MtaOg//ZIySdhqMtcwvIiBsTjT//R48EoAm+XHm IL8sV1m969472zIxVGofJC5sTDeBor7pdxMKYf2163gsL5v8DONYTM0qIIjWD0ml cBrFrEVpF7WsNQpcMN97RO7VE1Cdvu8/9nltS/v+hRuWMfrA4CMGPKVYdH9T0pOx kFPHmRqa09BhoIOQieVFU8STmN8o33O4soj0nKRQMJmOw4SyZ1MyDbLrVTGiqF2z /i6jxaWco7BApj9ZohPpBwoxx+PgH7poQaUwaCmtUG0SvXh//AdBmpSatzipFFh9 MqvDDpTtTcXP8PR65jVC3epKf6bQe0jyiQjbOmXfa6fRhxSKjHudkotkdX0sZU2u cNt3zQgdAbDU03fi6AZVFry/3iVT4gilo3GhcVwKyVZ3P2yAqlWKxCUkenCqT99o upu1CS1pRJbOhwT17Nw1iVXYn4zjeO6ez3OVLK6eTYaXh1NgtmJwoSc1Qasr9xks ypNuiuIPaadvE2kiRQsRNHKeDuJipm59MpMt86exv0wtty1R5GWGPFLRJPxPf14A S3xT9mcHwDrsK96F1eYUl8bbuq0ZOaQOAQJ3qP2ZcL2bzhK5h1xp6IZptzoPKcfD bEumK8QfY7vLvber0K7cB2qtFqaBCbAtwZ/Jz0r4jt0TQfx/TFpC2Y39m1tdN4xm YHz3HRpI1/A= =nfNQ -----END PGP SIGNATURE-----