Re: CVE: Python-twisted a.o. needs update for F37 due to matrix-synapse security issue
On 26/05/2023 16:22, Marius Schwarz wrote:
This brings me to the question: whats the main issue for twisted
here?
1. Contact python-twisted maintainers.
2. Check if all dependent packages are compatible with the updated
python-binding package.
3. If this is a major update, you or the package maintainer should
receive a FESCo approval in accordance with Fedora Updates policy.
Another solution: backport the security fix into F37.
--
Sincerely,
Vitaly Zaitsev (vitaly(a)easycoding.org)