I'm wearing my debian package maintainer hat at the moment.
How serious are the security issues with MHonArc 2.5.3? Debian is
shipping 2.5.3 in our stable branch, which we generally don't mess
with except for security problems. The release notes indicate
that 2.5.3 has some vulnerabilities.
Do MHonArc developers recommend we issue an advisory and take action
(provide a newer MHonArc or backport a security fix?) Or is the
particular problem not such a big deal?
Description: This is a digitally signed message part