Control: tags -1 + confirmed On Tue, 2022-12-06 at 16:26 +0100, Helmut Grohne wrote: > CVE-2022-38266 is a low impact vulnerability where leptonlib would > crash > with arithmetic exceptions on certain JPEG files. Since this is only > DoS, it does not go via bullseye-security. >
and thus: +leptonlib (1.79.0-1.1+deb11u1) bullseye-security; urgency=medium should use "bullseye" as the distribution. Please go ahead. Regards, Adam
