Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

"Adam D. Barratt" writes: > On Thu, 2023-08-03 at 10:39 -0400, Nicholas D Steeves wrote: >> >> Thanks for the ACK, and for the reminder! I had forgotten to run dch >> with "--team", so I fixed that, and uploaded. >> > > I'm not sure what happened to the upload, but there appears to be no >

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

On Thu, 2023-08-03 at 10:39 -0400, Nicholas D Steeves wrote: > Jonathan Wiltshire writes: > > > Control: tag -1 confirmed > > > > On Mon, Jun 12, 2023 at 07:44:52PM -0400, Nicholas D Steeves wrote: > > > Updated debdiff attached. > > > > Please go ahead (you should probably add a

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Jonathan Wiltshire writes: > Control: tag -1 confirmed > > On Mon, Jun 12, 2023 at 07:44:52PM -0400, Nicholas D Steeves wrote: >> Updated debdiff attached. > > Please go ahead (you should probably add a non-maintainer upload line, or > add yourself to uploaders, as well). Thanks for the ACK,

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Control: tag -1 confirmed On Mon, Jun 12, 2023 at 07:44:52PM -0400, Nicholas D Steeves wrote: > Updated debdiff attached. Please go ahead (you should probably add a non-maintainer upload line, or add yourself to uploaders, as well). Thanks, -- Jonathan Wiltshire

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Dear release team, please skip to the bottom for the info you're looking for. Salvatore Bonaccorso writes: > What is as well different for the uploads is to which upload queue you > would upload in the end. ftp-master for the proposed-updates via point > release, security-master for the

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Hi Nicholas, On Mon, Jun 12, 2023 at 07:44:52PM -0400, Nicholas D Steeves wrote: > Control: block 1033341 by -1 > > Dear Salvatore and release team, > > Salvatore Bonaccorso writes: > > > On Tue, Jun 06, 2023 at 11:00:14PM -0400, Nicholas D Steeves wrote: > >> +org-mode (9.4.0+dfsg-1+deb11u1)

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Control: block 1033341 by -1 Dear Salvatore and release team, Salvatore Bonaccorso writes: > On Tue, Jun 06, 2023 at 11:00:14PM -0400, Nicholas D Steeves wrote: >> +org-mode (9.4.0+dfsg-1+deb11u1) bullseye-security; urgency=medium >> + >> + * Fix Org Mode command injection vulnerability

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Hi, On Tue, Jun 06, 2023 at 11:00:14PM -0400, Nicholas D Steeves wrote: > +org-mode (9.4.0+dfsg-1+deb11u1) bullseye-security; urgency=medium > + > + * Fix Org Mode command injection vulnerability CVE-2023-28617 by > backporting > +0004-Org-Mode-vulnerability-CVE-2023-28617-is-fixed.patch

Bug#1037175: [preapproval] bullseye-pu: package org-mode/9.4.0+dfsg-1+deb11u1

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu Dear Release Team, [ Reason ] https://security-tracker.debian.org/tracker/CVE-2023-28617 Bug #1033341 latex in ob-latex.el in Org Mode (≤9.6.1) allows attackers to execute