[oss-security] Dulwich security issue (fwd)
Andrew Shadura
andrew at shadura.me
Mon Mar 23 10:55:27 EDT 2015
Hi,
On 23 March 2015 at 15:41, Mads Kiilerich <mads at kiilerich.com> wrote:
> I don't know. I guess all we can do is to inform all users that they
> probably have it installed as a dependency and that they should upgrade. We
> could perhaps make a "secure" version mandatory in next release.
>
> I can however not find the mentioned 0.9.9 anywhere, and pip only has a
> 0.10.0 which also don't have any release notes and I don't know how
> backwards compatible it is.
PyPi has 0.9.9: https://pypi.python.org/pypi/dulwich/0.9.9
--
Cheers,
Andrew
More information about the kallithea-general
mailing list