swift (2.26.0-10+deb11u1) bullseye-security; urgency=medium * CVE-2022-47950 / OSSA-2023-001: Arbitrary file access through custom S3 XML entities. Add upstream patch backported to Bullseye: CVE-2022-47950-stable-victoria.patch (Closes: #1029200). * Exclude test TestCNAMELookup.test_host_is_storage_domain(). -- Thomas Goirand <email address hidden> Thu, 19 Jan 2023 17:07:48 +0100