Am Tue, Apr 01, 2025 at 12:13:53AM +0300 schrieb Adrian Bunk: > Package: release.debian.org > Severity: normal > Tags: bookworm moreinfo > User: [email protected] > Usertags: pu > X-Debbugs-Cc: [email protected], Varnish Package Maintainers > <[email protected]> > > * CVE-2025-30346: HTTP/1 client-side desync vulnerability > > Tagged moreinfo, as question to the security team whether they want > this in pu or as DSA.
Fixing this via the next point update is fine, thanks.
Cheers,
Moritz
