I uploaded a snapshot of the jessie-security branch of linux, with the
version 3.16.66-1~git20190503.2fd62fa, to people.debian.org:
https://people.debian.org/~benh/packages/jessie-security/
There are source and binaries for amd64 and i386, along with a signed
.changes file.
Let me know if you fi
Hi Markus and Roberto,
I just had a look at imagemagick in jessie and did some quick triage.
I saw the following notes in dla-needed:
NOTE: 20190408: Still waiting on security team response to inquiries
from (apo) and (roberto)
Did you CC debian-lts? I can't find the e-mail you're refer
Am 05.05.19 um 15:01 schrieb Hugo Lefeuvre:
[...]
> Good idea. I plan to work on CVE-2019-9956, CVE-2019-10650 and possibly
> CVE-2019-11598. Do you think an upload ~ next week-end would be feasible
> for you?
>
> cheers,
> Hugo
Sure, that should be feasible.
Cheers,
Markus
signature.asc
De
Hi Markus,
> We contacted the security team directly without CCing the lts mailing
> list. However they didn't reply to us.
OK, Roberto forwarded the discussion to me.
> > I think the security team opted for targeted fixes in the imagemagick case,
> > at least for CVE-2019-9956 (claims remote co
Hi Roberto,
> > Did you CC debian-lts? I can't find the e-mail you're referring to :)
> >
> I did not. In a few minutes I will bounce you the message from that
> discussion (there are 5 or 6). I won't bounce them to the list, though,
> as I suspect they will get flagged as spam.
Thanks for the
Hi,
Am 05.05.19 um 14:34 schrieb Hugo Lefeuvre:
> Hi Markus and Roberto,
>
> I just had a look at imagemagick in jessie and did some quick triage.
>
> I saw the following notes in dla-needed:
>
> NOTE: 20190408: Still waiting on security team response to inquiries
> from (apo) and (robe
Hi Hugo,
On Sun, May 05, 2019 at 02:34:34PM +0200, Hugo Lefeuvre wrote:
> Hi Markus and Roberto,
>
> I just had a look at imagemagick in jessie and did some quick triage.
>
> I saw the following notes in dla-needed:
>
> NOTE: 20190408: Still waiting on security team response to inquiries
>