Bug#1007931: buster-pu: package qemu/1:3.1+dfsg-8+deb10u9

On 22/08/22 11:49 AM, Moritz Muehlenhoff wrote: > On Mon, Aug 22, 2022 at 02:50:41PM +0530, Abhijith PA wrote: > > Hello Moritz, > > > > I've prepared a qemu build months back fixing pending CVEs then. I > > have now took 2 patches (CVE-2020-35504, CVE-2020

Bug#1007931: buster-pu: package qemu/1:3.1+dfsg-8+deb10u9

-2021-20196 +CVE-2021-20203 CVE-2021-20221 CVE-2021-20257 CVE-2022-26354 +CVE-2020-35504 CVE-2020-35505 CVE-2022-35414 + + -- Abhijith PA Sat, 02 Jul 2022 18:06:35 +0530 + qemu (1:3.1+dfsg-8+deb10u8) buster-security; urgency=medium * mention fixing of CVE-2020-13765 in 3.1+dfsg-8

Bug#988936: buster-pu: package mqtt-client/1.14-1

-1+deb10u1) buster; urgency=medium + + * Non-maintainer upload. + * Fix CVE-2019-0222: unmarshalling corrupt MQTT frame can lead to +broker Out of Memory exception making it unresponsive. +(Closes: #988109) + * Update Vcs-* URL in d/control. + + -- Abhijith PA Fri, 21 May 2021 21:59:49

Re: how to deal with widely used packages unsuitable for stable (was Re: [Git][security-tracker-team/security-tracker][master] Add radare2 to dla-needed.txt with comments.)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, On 29/08/19 6:47 pm, Paul Gevers wrote: > Hi > > On 29-08-2019 14:28, Raphael Hertzog wrote: >> (Note: pkg-security@tracker.d.o is not a valid email, dropped) >> >> Hi, >> >> On Thu, 29 Aug 2019, Holger Levsen wrote: In general, we

Bug#929342: unblock: aqemu/0.9.2-2.2

Package: release.debian.org User: release.debian@packages.debian.org Usertags: unblock Severity: normal Dear release team, Please unblock package aqemu. I reported a RC bug (#927126) against aqemu. Though its actual maintainer is not active for years, a debian contributor (Alexis Murzeau)