On Thu, Mar 31, 2016 at 23:43:03 +0200, Daniel Beyer wrote: > Hi Julien, > > Can you give a short update regarding the proposed > symfony/2.3.21+dfsg-4+deb8u3, fixing CVE-2016-1902? > It might be a bit late, but it would be great to have this fixed in 8.4, > which is about to be released. > > Do you need any further information from us? > I must admit that I have trouble believing that you'd need 1kloc to add a random_bytes function :(
Cheers, Julien