Bug#1065059: bookworm-pu: package symfony/5.4.23+dfsg-1+deb12u2
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:54 +0100, David Prévot wrote: > Hi, > > Le Thu, Feb 29, 2024 at 11:40:25AM +0100, David Prévot a écrit : > > [x] attach debdiff against the package in (old)stable > > Now it’s true. Please go ahead. Regards, Adam
Bug#1065059: bookworm-pu: package symfony/5.4.23+dfsg-1+deb12u2
Package: release.debian.org Severity: normal Tags: bookworm X-Debbugs-Cc: symf...@packages.debian.org, t...@security.debian.org Control: affects -1 + src:symfony User: release.debian@packages.debian.org Usertags: pu [4/9 for bookworm] This is a follow up from composer/DSA-5632-1 and similar to #1065058. In order to fix a Debian-specific issue related to CVE-2024-24821, we agreed with the security team to push related dependencies via the next point release. It also adds an upstream patch in order to fix the testsuite, already referenced via #1061033 in Debian. The only change (besides changelog entry) in the binary packages is of the following kind (thanks to diffoscope), for example for php-symfony-cache. │ │ ├── ./usr/share/php/Symfony/Component/Cache/autoload.php │ │ │ @@ -1,16 +1,16 @@ │ │ │ signature.asc Description: PGP signature