Control: tags -1 + confirmed On Tue, 2015-06-09 at 19:46 +0200, Philip Rinn wrote: > rawtherapee is affected by the security issue CVE-2015-3885[1]. It's marked > no- > das that's why I want to coordinate the update with you. > > I attached the debdiff.
+rawtherapee (4.2-1+deb8u1) jessie-security; urgency=high + + * Add patch debian/patches/02-fix_CVE-2015-3885.patch: + - Fix dcraw imput sanitization errors (CVE-2015-3885) Just "jessie" as the distribution, please, as this isn't going via the security archive. With the above change, please go ahead. Regards, Adam -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
