Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: 4437e725 by Thorsten Alteholz at 2019-10-13T21:02:46Z update notes - - - - - 23571d30 by Thorsten Alteholz at 2019-10-13T21:03:50Z claim libpng - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -86,6 +86,8 @@ libmatio (Adrian Bunk) -- libpcap (Abhijith PA) -- +libpng (Thorsten Alteholz) +-- libqb NOTE: 20190616: Upstream patch does not apply at all, but it appears that NOTE: 20190616: package is still vulnerable in ipc_posix_mq.c etc. or @@ -121,7 +123,7 @@ nghttp2 (Mike Gabriel) NOTE: 20190930: work into the pkg triaging, too. (sunweaver) -- opendmarc (Thorsten Alteholz) - NOTE: 20190929: testing package + NOTE: 20191013: testing package -- pam-python NOTE: 20190927: Upstream appear to not have a distinct revision for this fix, using a single commit for the entire release which changes many things. (lamby) @@ -142,6 +144,7 @@ slurm-llnl NOTE: 20190814: Contacted security of slurm-llnl for relevant commits (abhijith) -- spip (Thorsten Alteholz) + NOTE: 20191013: testing package -- thunderbird NOTE: 20191001: CVE-2019-11755: bug is private, not sure whether to backport to 60esr or wait for 68esr (Beuc) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/0c4fe87aa4dd16b02fc9c03df6a63487d897307a...23571d3006c1724e9378be28bc9a7afb8e0396ae -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/0c4fe87aa4dd16b02fc9c03df6a63487d897307a...23571d3006c1724e9378be28bc9a7afb8e0396ae You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
