Hi Daniel,
On Fri, Jun 02, 2023 at 06:59:35PM -0400, Daniel Kahn Gillmor wrote:
> Hi Salvatore--
>
> On Fri 2023-06-02 21:20:50 +0200, Salvatore Bonaccorso wrote:
> > Thanks for having a closer look and for your assessment. Then I
> > believe we can have a fix scheduled via respective point
Hi Salvatore--
On Fri 2023-06-02 21:20:50 +0200, Salvatore Bonaccorso wrote:
> Thanks for having a closer look and for your assessment. Then I
> believe we can have a fix scheduled via respective point releases, I
> do not see an urgency for it requiring a DSA. Initially I was not
> completely
Hi Daniel,
On Thu, Jun 01, 2023 at 05:19:06PM -0400, Daniel Kahn Gillmor wrote:
> Control: found 1035542 4.3-1+deb11u3
> Control: tags 1035542 + patch
>
> Thanks for the documentation of CVE-2023-30570 on
> https://bugs.debian.org/1035542, Salvatore.
>
> fwiw, i don't think this is particularly
Processing control commands:
> found 1035542 4.3-1+deb11u3
Bug #1035542 [src:libreswan] libreswan: CVE-2023-30570: Incorrect aggressive
mode interaction causes the pluto daemon to crash
Ignoring request to alter found versions of bug #1035542 to the same values
previously set
> tags 1035542 +
Control: found 1035542 4.3-1+deb11u3
Control: tags 1035542 + patch
Thanks for the documentation of CVE-2023-30570 on
https://bugs.debian.org/1035542, Salvatore.
fwiw, i don't think this is particularly serious -- the vulnerability
only appears to be dangerous if the libreswan endpoint is
5 matches
Mail list logo