[Pkg-rpm-devel] Bug#887306: obs-build: CVE-2017-14804: Exploit extractbuild to write to files in the host system
Salvatore Bonaccorso
carnil at debian.org
Tue Feb 27 19:35:42 UTC 2018
Hi Héctor
On Tue, Feb 27, 2018 at 04:55:11PM +0100, Héctor Orón Martínez wrote:
> Hello Salvatore,
>
> Since you are part of security team, should the fix go in stable via
> security queue or stable pu?
Thanks for pinging!
Please via a point release, we have classified it as 'no-dsa'.
Regards,
Salvatore
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-rpm-devel/attachments/20180227/5af2f8df/attachment.sig>
More information about the Pkg-rpm-devel
mailing list