Hi Andreas, On Thu, Feb 01, 2024 at 06:35:38AM +0000, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Sat, 2024-01-20 at 15:53 +0100, Andreas Metzler wrote: > > I would like to fix both CVE-2024-0567 and CVE-2024-0553 via a > > oldstable-updates since they do not require a DSA. > > Please go ahead.
Andreas did you saw the ack from Adam? FTR, please keep the CVE references now as we have the incomplete fix in bullseye for CVE-2023-5981 with the 3.7.1-5+deb11u4 . Regards, Salvatore
