Package: release.debian.org Severity: normal Tags: bullseye User: [email protected] Usertags: pu X-Debbugs-Cc: [email protected],[email protected]
Hi SRM, isync in bullseye is affected by CVE-2021-3657[1]. Upstream is providing as well explicit patches for the 1.3.x series. That said, I could not explicitly thest the package for the CVE is question. But I'm X-Debbugs-CC'ing Antoine which might additionally be able to expose the package for bullseye to some real situation testing. Regards, Salvatore [1] https://www.openwall.com/lists/oss-security/2021/12/03/1
